Vulnerabilities > Cisco > DUO Device Health Application

DATE CVE VULNERABILITY TITLE RISK
2023-08-16 CVE-2023-20229 Path Traversal vulnerability in Cisco DUO Device Health Application
A vulnerability in the CryptoService function of Cisco Duo Device Health Application for Windows could allow an authenticated, local attacker with low privileges to conduct directory traversal attacks and overwrite arbitrary files on an affected system. This vulnerability is due to insufficient input validation.
local
low complexity
cisco CWE-22
7.1