CVE-2022-20864Insertion of Sensitive Information into Externally-Accessible File or Directory in Cisco IOS XE Software

CWE-538Insertion of Sensitive Information into Externally-Accessible File or Directory4 documents4 sources
Severity
4.6MEDIUMNVD
EPSS
0.2%
top 58.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS XE Software
Timeline
PublishedOct 10
Latest updateOct 11

Description

A vulnerability in the password-recovery disable feature of Cisco IOS XE ROM Monitor (ROMMON) Software for Cisco Catalyst Switches could allow an unauthenticated, local attacker to recover the configuration or reset the enable password. This vulnerability is due to a problem with the file and boot variable permissions in ROMMON. An attacker could exploit this vulnerability by rebooting the switch into ROMMON and entering specific commands through the console. A successful exploit could allow the

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 0.9 | Impact: 3.6

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-286c-pf2q-9ghm: A vulnerability in the password-recovery disable feature of Cisco IOS XE ROM Monitor (ROMMON) Software for Cisco Catalyst Switches could allow an unau2022-10-11
CVEList
Cisco IOS XE ROM Monitor Software for Catalyst Switches Information Disclosure Vulnerability2022-10-10

📋Vendor Advisories

1
Cisco
Cisco IOS XE ROM Monitor Software for Catalyst Switches Information Disclosure Vulnerability2022-09-28
CVE-2022-20864 — Cisco IOS XE Software vulnerability | cvebase