On 27-Oct-2023, CISA released a security advisory for all organizations utilizing Cisco’s Internetworking Operating System (IOS) XE Software Web User Interface (UI).
Upon assessing the Appian platform against all details of the CVEs (CVE-2023-20198 and CVE-2023-20273), we can confirm that the Appian platform is not impacted by the vulnerability described in the security advisory. We will continue to monitor the situation and provide any updates as appropriate.
The following CVEs were released with additional information on the scope of the vulnerability:
CVE-2023-20198 - (Vulnerability in the web UI feature of Cisco IOS XE Software)CVE-2023-20273 - (Vulnerability in the web UI feature of Cisco IOS XE Software)Supporting Documentation:
This article applies to all supported versions of Appian.
Last reviewed: October 31, 2023