SB2020093095 - Multiple vulnerabilities in Cisco IOS XE Software for Cisco ASR 900 Series

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2020093095

SB2020093095 - Multiple vulnerabilities in Cisco IOS XE Software for Cisco ASR 900 Series

Published: September 30, 2020

Security Bulletin ID SB2020093095
Severity
Low
Patch available
YES
Number of vulnerabilities 2
Exploitation vector Local access
Highest impact Code execution

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.


1) Exposed dangerous method or function (CVE-ID: CVE-2020-3416)

The vulnerability allows a local user to execute arbitrary code at bootup and break the chain of trust.

The vulnerability exists due to incorrect validations by boot scripts when specific ROM monitor (ROMMON) variables are set. A local administrator can copy a specific file to the local file system, define specific ROMMON variables and run arbitrary code on the system with root privileges.


2) Exposed dangerous method or function (CVE-ID: CVE-2020-3513)

The vulnerability allows a local user to execute arbitrary code at bootup and break the chain of trust.

The vulnerability exists due to incorrect validations by boot scripts when specific ROM monitor (ROMMON) variables are set. A local administrator can copy a specific file to the local file system, define specific ROMMON variables and run arbitrary code on the system with root privileges.


Remediation

Install update from vendor's website.

References