CVE-2021-1452OS Command Injection in Cisco IOS XE ROM Monitor

CWE-78OS Command InjectionCWE-367Time-of-check Time-of-use (TOCTOU) Race Condition5 documents5 sources
Severity
6.8MEDIUMNVD
GHSA6.5
EPSS
0.1%
top 77.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco IOS XE ROM MonitorCisco IOS XE Rommon Software
Timeline
PublishedMar 24
Latest updateMay 24

Description

A vulnerability in the ROM Monitor (ROMMON) of Cisco IOS XE Software for Cisco Catalyst IE3200, IE3300, and IE3400 Rugged Series Switches, Cisco Catalyst IE3400 Heavy Duty Series Switches, and Cisco Embedded Services 3300 Series Switches could allow an unauthenticated, physical attacker to execute unsigned code at system boot time. This vulnerability is due to incorrect validations of specific function arguments passed to a boot script when specific ROMMON variables are set. An attacker could ex

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 0.9 | Impact: 5.9

Affected Packages2 packages

🔴Vulnerability Details

3
GHSA
GHSA-xhfj-h4w3-cwv4: A vulnerability in the ROM Monitor (ROMMON) of Cisco IOS XE Software for Cisco Catalyst IE3200, IE3300, and IE3400 Rugged Series Switches, Cisco Catal2022-05-24
GHSA
Time-of-check Time-of-use (TOCTOU) Race Condition in Jenkins2022-05-24
CVEList
Cisco IOS XE ROM Monitor Software for Cisco Industrial Switches OS Command Injection Vulnerability2021-03-24

📋Vendor Advisories

1
Cisco
Cisco IOS XE ROM Monitor Software for Cisco Industrial Switches OS Command Injection Vulnerability2021-03-24
CVE-2021-1452 — OS Command Injection in Cisco | cvebase