CVE-2020-3417OS Command Injection in Cisco IOS XE Software

CWE-78OS Command Injection4 documents4 sources
Severity
6.7MEDIUMNVD
CNA6.8
EPSS
0.1%
top 75.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco IOS XE SoftwareCisco IOS XE
Timeline
PublishedSep 24
Latest updateMay 24

Description

A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to execute persistent code at boot time and break the chain of trust. This vulnerability is due to incorrect validations by boot scripts when specific ROM monitor (ROMMON) variables are set. An attacker could exploit this vulnerability by installing code to a specific directory in the underlying operating system (OS) and setting a specific ROMMON variable. A successful exploit could allow the attacker to execut

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages2 packages

NVDcisco/ios_xe98 versions+97

🔴Vulnerability Details

2
GHSA
GHSA-q3pq-7jmm-xr4h: A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to execute persistent code at boot time and break the chain of t2022-05-24
CVEList
Cisco IOS XE Software Arbitrary Code Execution Vulnerability2020-09-24

📋Vendor Advisories

1
Cisco
Cisco IOS XE Software Arbitrary Code Execution Vulnerability2020-09-24
CVE-2020-3417 — OS Command Injection in Cisco | cvebase