[FALSE-NEGATIVE] CVE-2023-20198 Cisco IOS XE RCE

### Template IDs or paths

```markdown
http/cves/2023/CVE-2023-20198.yaml
```

### Environment

```markdown
- OS: Ubuntu 22.04
- Nuclei: v3.4.4
- Go: 1.23.0
```

### Steps To Reproduce

1. Run template against CVE-2023-20198 vulnerable target on https
2. False negative

The issue is most likely caused by the target endpoint on Cisco differing depending whether access is via http or https. I could achieve detection by modifying the target endpoint on the template to /%2577ebui_wsma_https

### Relevant dumped responses

```shell
no detection (details below)
```

### Anything else?

![Image](https://github.com/user-attachments/assets/50ec96da-af54-4583-95f1-17abb0d7c031)

post endpoint modification:

![Image](https://github.com/user-attachments/assets/76f2be0d-f7ae-4952-9925-da07051d6be4)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[FALSE-NEGATIVE] CVE-2023-20198 Cisco IOS XE RCE #12324

Template IDs or paths

Environment

Steps To Reproduce

Relevant dumped responses

Anything else?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[FALSE-NEGATIVE] CVE-2023-20198 Cisco IOS XE RCE #12324

Description

Template IDs or paths

Environment

Steps To Reproduce

Relevant dumped responses

Anything else?

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions