CVE-2021-34718Argument Injection in Cisco IOS XR

CWE-88Argument Injection4 documents4 sources
Severity
8.1HIGHNVD
EPSS
1.8%
top 17.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco IOS XRCisco IOS XR Software
Timeline
PublishedSep 9
Latest updateMay 24

Description

A vulnerability in the SSH Server process of Cisco IOS XR Software could allow an authenticated, remote attacker to overwrite and read arbitrary files on the local device. This vulnerability is due to insufficient input validation of arguments that are supplied by the user for a specific file transfer method. An attacker with lower-level privileges could exploit this vulnerability by specifying Secure Copy Protocol (SCP) parameters when authenticating to a device. A successful exploit could allo

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NExploitability: 2.8 | Impact: 5.2

Affected Packages2 packages

NVDcisco/ios_xr7.4.07.4.1+1

🔴Vulnerability Details

2
GHSA
GHSA-9j7c-3668-hr3c: A vulnerability in the SSH Server process of Cisco IOS XR Software could allow an authenticated, remote attacker to overwrite and read arbitrary files2022-05-24
CVEList
Cisco IOS XR Software Arbitrary File Read and Write Vulnerability2021-09-09

📋Vendor Advisories

1
Cisco
Cisco IOS XR Software Arbitrary File Read and Write Vulnerability2021-09-08
CVE-2021-34718 — Argument Injection in Cisco IOS XR | cvebase