CVE-2020-3473Incorrect Authorization in Cisco IOS XR

CWE-264CWE-863Incorrect Authorization4 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 86.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco IOS XRCisco IOS XR Software
Timeline
PublishedSep 4
Latest updateMay 24

Description

A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local CLI shell user to elevate privileges and gain full administrative control of the device. The vulnerability is due to incorrect mapping of a command to task groups within the source code. An attacker could exploit this vulnerability by first authenticating to the local CLI shell on the device and using the CLI command to bypass the task group–based checks. A successful

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDcisco/ios_xr5.0.07.0.12+5

🔴Vulnerability Details

2
GHSA
GHSA-x8v9-c427-8x6q: A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local CLI shell user to ele2022-05-24
CVEList
Cisco IOS XR Software Authenticated User Privilege Escalation Vulnerability2020-09-04

📋Vendor Advisories

1
Cisco
Cisco IOS XR Software Authenticated User Privilege Escalation Vulnerability2020-09-02
CVE-2020-3473 — Incorrect Authorization in Cisco IOS XR | cvebase