CVE-2023-20064

Published: Mar 9, 2023Modified: Nov 21, 2024

4.6

Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 0.9 / Impact: 3.6

Source: NVD

Description

A vulnerability in the GRand Unified Bootloader (GRUB) for Cisco IOS XR Software could allow an unauthenticated attacker with physical access to the device to view sensitive files on the console using the GRUB bootloader command line. This vulnerability is due to the inclusion of unnecessary commands within the GRUB environment that allow sensitive files to be viewed. An attacker could exploit this vulnerability by being connected to the console port of the Cisco IOS XR device when the device is power-cycled. A successful exploit could allow the attacker to view sensitive files that could be used to conduct additional attacks against the device.

Affected (4)

Products: Cisco: Ios Xr

Cisco

1 product

Ios Xr

Configuration A

1 vulnerable · 16 platform

Vulnerable Software	Affected Versions
Cisco Ios Xr	Before 7.9.1

Running on/with	Platform Versions
Cisco Asr 9000v V2	All versions
Cisco Asr 9001	All versions
Cisco Asr 9006	All versions
Cisco Asr 9010	All versions
Cisco Asr 9901	All versions
Cisco Asr 9902	All versions
Cisco Asr 9903	All versions
Cisco Asr 9904	All versions
Cisco Asr 9906	All versions
Cisco Asr 9910	All versions
Cisco Asr 9912	All versions
Cisco Asr 9922	All versions
Cisco Ios Xrv 9000	All versions
Cisco Ncs 1001	All versions
Cisco Ncs 1002	All versions
Cisco Ncs 1004	All versions

Configuration B

1 vulnerable · 19 platform

Vulnerable Software	Affected Versions
Cisco Ios Xr	Before 7.6.1

Running on/with	Platform Versions
Cisco Nc57 18dd Se	All versions
Cisco Nc57 24dd	All versions
Cisco Nc57 36h Se	All versions
Cisco Nc57 36h6d S	All versions
Cisco Ncs 540	All versions
Cisco Ncs 540 Fronthaul	All versions
Cisco Ncs 5501	All versions
Cisco Ncs 5501 Se	All versions
Cisco Ncs 5502	All versions
Cisco Ncs 5502 Se	All versions
Cisco Ncs 5508	All versions
Cisco Ncs 5516	All versions
Cisco Ncs 560 4	All versions
Cisco Ncs 560 7	All versions
Cisco Ncs 57b1 5dse Sys	All versions
Cisco Ncs 57b1 6d24 Sys	All versions
Cisco Ncs 57c1 48q6 Sys	All versions
Cisco Ncs 57c3 Mod Sys	All versions
Cisco Ncs 57c3 Mods Sys	All versions

Configuration C

1 vulnerable · 3 platform

Vulnerable Software	Affected Versions
Cisco Ios Xr	Before 7.7.1

Running on/with	Platform Versions
Cisco Ncs 5001	All versions
Cisco Ncs 5002	All versions
Cisco Ncs 5011	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Ios Xr	All versions

Running on/with	Platform Versions
Cisco Ncs 6000	All versions

Related CWEs

CWE-862

Missing Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

References (2)

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-load-infodisc-9rdOr5Fq

Source: psirt@cisco.com

Vendor Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-load-infodisc-9rdOr5Fq

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.