CVE-2020-3473

Published: Sep 4, 2020Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local CLI shell user to elevate privileges and gain full administrative control of the device. The vulnerability is due to incorrect mapping of a command to task groups within the source code. An attacker could exploit this vulnerability by first authenticating to the local CLI shell on the device and using the CLI command to bypass the task group–based checks. A successful exploit could allow the attacker to elevate privileges and perform actions on the device without authorization checks.

Affected (6)

Products: Cisco: Ios Xr

Cisco

1 product

Ios Xr

Configuration A

2 vulnerable · 5 platform

Vulnerable Software	Affected Versions
Cisco Ios Xr	From 5.0.0 to 7.0.12
Cisco Ios Xr	From 7.1.0 to 7.2.1

Running on/with	Platform Versions
Cisco 8201	All versions
Cisco 8202	All versions
Cisco 8808	All versions
Cisco 8812	All versions
Cisco 8818	All versions

Configuration B

3 vulnerable · 11 platform

Vulnerable Software	Affected Versions
Cisco Ios Xr	From 5.0.0 to 6.6.3
Cisco Ios Xr	From 7.0.0 to 7.0.2
Cisco Ios Xr	From 7.1.0 to 7.1.1

Running on/with	Platform Versions
Cisco Ios Xrv 9000	All versions
Cisco Ncs 540	All versions
Cisco Ncs 5501	All versions
Cisco Ncs 5501 Se	All versions
Cisco Ncs 5502	All versions
Cisco Ncs 5502 Se	All versions
Cisco Ncs 5508	All versions
Cisco Ncs 5516	All versions
Cisco Ncs 560	All versions
Cisco Ncs 6000	All versions
Cisco Ncs 6008	All versions