Cisco IOS XR up to 24.1.1 CLI access control

Summaryinfo

A vulnerability described as critical has been identified in Cisco IOS XR. This issue affects some unknown processing of the component CLI. Such manipulation leads to access control. This vulnerability is documented as CVE-2024-20343. The attack needs to be performed locally. There is not any exploit available. Upgrading the affected component is recommended.

Detailsinfo

A vulnerability was found in Cisco IOS XR. It has been rated as problematic. Affected by this issue is an unknown code block of the component CLI. The manipulation with an unknown input leads to a access control vulnerability. Using CWE to declare the problem leads to CWE-284. The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor. Impacted is confidentiality. CVE summarizes:

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to read any file in the file system of the underlying Linux operating system. The attacker must have valid credentials on the affected device. This vulnerability is due to incorrect validation of the arguments that are passed to a specific CLI command. An attacker could exploit this vulnerability by logging in to an affected device with low-privileged credentials and using the affected command. A successful exploit could allow the attacker access files in read-only mode on the Linux file system.

The advisory is available at sec.cloudapps.cisco.com. This vulnerability is handled as CVE-2024-20343 since 11/08/2023. The exploitation is known to be easy. Local access is required to approach this attack. The technical details are unknown and an exploit is not available. This vulnerability is assigned to T1068 by the MITRE ATT&CK project.

Upgrading eliminates this vulnerability.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Productinfo

Type

• Router Operating System

Vendor

• Cisco

Name

• IOS XR

Version

• 6.5.1
• 6.5.2
• 6.5.3
• 6.5.15
• 6.5.92
• 6.5.93
• 6.6.1
• 6.6.2
• 6.6.3
• 6.6.4
• 6.6.11
• 6.6.12
• 6.6.25
• 7.0.0
• 7.0.1
• 7.0.2
• 7.0.11
• 7.0.12
• 7.0.14
• 7.0.90
• 7.1.1
• 7.1.2
• 7.1.3
• 7.1.15
• 7.1.25
• 7.2.0
• 7.2.1
• 7.2.2
• 7.2.12
• 7.3.1
• 7.3.2
• 7.3.3
• 7.3.4
• 7.3.5
• 7.3.6
• 7.3.15
• 7.3.16
• 7.3.27
• 7.4.1
• 7.4.2
• 7.4.15
• 7.4.16
• 7.5.1
• 7.5.2
• 7.5.3
• 7.5.4
• 7.5.5
• 7.5.12
• 7.5.52
• 7.6.1
• 7.6.2
• 7.6.15
• 7.7.1
• 7.7.2
• 7.7.21
• 7.8.1
• 7.8.2
• 7.8.12
• 7.8.22
• 7.9.1
• 7.9.2
• 7.9.21
• 7.10.1
• 7.10.2
• 7.11.1
• 24.1.1

License

• commercial

Website

• Vendor: https://www.cisco.com/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Discussion