Posts for: #17.12.4a

Cisco IOS XE Software HTTP API Command Injection Vulnerability

#17.12  #17.12.2  #17.12.2a  #17.12.3  #17.12.3a  #17.12.4  #17.12.4a  #17.12.4b  #17.12.5  #17.12.5a  #17.12.5b  #17.12.5c  #17.13  #17.13.1  #17.13.1a  #17.14 
🚨 SEVERITY: HIGH — CVSS 8.8 Security Advisory

TL;DR 📌

A command injection vulnerability has been identified in the HTTP API subsystem of Cisco IOS XE Software. This flaw could allow an attacker to execute commands with root privileges, posing a significant security risk. Users are advised to upgrade to fixed software as there are no workarounds available.

What happened 🕵️‍♂️

Cisco has disclosed a vulnerability in the HTTP API subsystem of Cisco IOS XE Software that could allow a remote attacker to inject commands that execute with root privileges. This vulnerability arises from insufficient input validation. An attacker with administrative privileges could exploit this by authenticating to an affected system and making an API call with crafted input. Alternatively, an unauthenticated attacker could trick a legitimate user with administrative privileges into clicking a malicious link. Successful exploitation could lead to arbitrary command execution as the root user.

[]

Cisco IOS XE Software Secure Boot Bypass Vulnerabilities

#17.1  #17.10.1  #17.10.1a  #17.10.1b  #17.11  #17.11.1  #17.11.1a  #17.12  #17.12.1  #17.12.1a  #17.12.1w  #17.12.1x  #17.12.1y  #17.12.1z  #17.12.1z1  #17.12.1z2 
🚨 SEVERITY: MEDIUM — CVSS 6.7 Security Advisory

TL;DR 📌

Multiple vulnerabilities in Cisco IOS XE Software could allow an authenticated local attacker or an unauthenticated attacker with physical access to execute persistent code at boot time, compromising device security. Cisco has released fixed software, and no workarounds are available.

What happened 🕵️‍♂️

Cisco has identified multiple vulnerabilities in its IOS XE Software that could allow an attacker to bypass secure boot mechanisms. These vulnerabilities stem from improper validation of software packages, enabling an attacker to place a crafted file on an affected device. This could lead to the execution of persistent code on the operating system, effectively breaking the chain of trust.

[]

Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability

#17.1  #17.10.1  #17.10.1a  #17.10.1b  #17.11  #17.11.1  #17.11.1a  #17.12  #17.12.1  #17.12.1a  #17.12.1w  #17.12.1x  #17.12.1y  #17.12.1z  #17.12.1z1  #17.12.1z2 
🚨 SEVERITY: HIGH — CVSS 7.7 Security Advisory

TL;DR 📌

A denial of service (DoS) vulnerability has been identified in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE Software. An authenticated remote attacker can exploit this vulnerability to cause affected devices to reload unexpectedly. The highest CVSS score for this vulnerability is 7.7, categorized as High severity. Cisco has released software updates to address this issue, but there are no workarounds available.

[]