CVE-2020-3396Improper Access Control in Cisco IOS XE Software

CWE-284Improper Access ControlCWE-269Improper Privilege ManagementCWE-863Incorrect Authorization5 documents5 sources
Severity
7.2HIGHNVD
CNA6.8
EPSS
0.1%
top 83.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco IOS XE SoftwareCisco IOS XE
Timeline
PublishedSep 24
Latest updateMay 24

Description

A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive (SSD) for Cisco IOS XE Software could allow an authenticated, physical attacker to remove the USB 3.0 SSD and modify sensitive areas of the file system, including the namespace container protections. The vulnerability occurs because the USB 3.0 SSD control data is not stored on the internal boot flash. An attacker could exploit this vulnerability by removing the USB 3.0 SSD, modifying or deleting files on the USB 3.0 S

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HExploitability: 0.5 | Impact: 6.0

Affected Packages2 packages

NVDcisco/ios_xe16.12.1

🔴Vulnerability Details

3
GHSA
GHSA-22hc-p772-wg38: A vulnerability in the file system on the pluggable USB 32022-05-24
GHSA
OpenNMS Horizon RCE via JEXL2 expression2022-05-24
CVEList
Cisco IOS XE Software IOx Guest Shell USB SSD Namespace Protection Privilege Escalation Vulnerability2020-09-24

📋Vendor Advisories

1
Cisco
Cisco IOS XE Software IOx Guest Shell USB SSD Namespace Protection Privilege Escalation Vulnerability2020-09-24
CVE-2020-3396 — Improper Access Control in Cisco | cvebase