Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20170405-IOSXE
HistoryApr 05, 2017 - 4:00 p.m.

Cisco IOS XE Software Startup Script Local Command Execution Vulnerability

2017-04-0516:00:00
tools.cisco.com
15

EPSS

0.001

Percentile

48.2%

JSON

A vulnerability in a startup script of Cisco IOS XE Software could allow an unauthenticated attacker with physical access to the targeted system to execute arbitrary commands on the underlying operating system with the privileges of the root user.

The vulnerability is due to insufficient validation of ROMMON variables values. An attacker could exploit this vulnerability by manipulating the content of some ROMMON variables, which will allow an external script containing the command to execute at boot time. A reload of the affected system is needed to exploit the vulnerability. An attacker would need console access to exploit this vulnerability.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-iosxe [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-iosxe”]

Affected configurations

Vulners
Node
ciscocisco_iosMatch3.2sgxe
OR
ciscocisco_iosMatch3.7sxe
OR
ciscocisco_iosMatch3.3sgxe
OR
ciscocisco_iosMatch3.8sxe
OR
ciscocisco_iosMatch3.9sxe
OR
ciscocisco_iosMatch3.2sexe
OR
ciscocisco_iosMatch3.3sexe
OR
ciscocisco_iosMatch3.3xoxe
OR
ciscocisco_iosMatch3.4sgxe
OR
ciscocisco_iosMatch3.5exe
OR
ciscocisco_iosMatch3.10sxe
OR
ciscocisco_iosMatch3.11sxe
OR
ciscocisco_iosMatch3.12sxe
OR
ciscocisco_iosMatch3.13sxe
OR
ciscocisco_iosMatch3.6exe
OR
ciscocisco_iosMatch3.14sxe
OR
ciscocisco_iosMatch3.15sxe
OR
ciscocisco_iosMatch3.3sqxe
OR
ciscocisco_iosMatch3.4sqxe
OR
ciscocisco_iosMatch3.7exe
OR
ciscocisco_iosMatch3.5sqxe
OR
ciscocisco_iosMatch3.16sxe
OR
ciscocisco_iosMatch3.17sxe
OR
ciscocisco_iosMatch16.1xe
OR
ciscocisco_iosMatch16.2xe
OR
ciscocisco_iosMatch3.8exe
OR
ciscocisco_iosMatch3.18sxe
OR
ciscocisco_iosMatch3.2.0sgxe
OR
ciscocisco_iosMatch3.2.1sgxe
OR
ciscocisco_iosMatch3.2.2sgxe
OR
ciscocisco_iosMatch3.2.3sgxe
OR
ciscocisco_iosMatch3.2.4sgxe
OR
ciscocisco_iosMatch3.2.5sgxe
OR
ciscocisco_iosMatch3.2.6sgxe
OR
ciscocisco_iosMatch3.2.7sgxe
OR
ciscocisco_iosMatch3.2.8sgxe
OR
ciscocisco_iosMatch3.2.9sgxe
OR
ciscocisco_iosMatch3.2.10sgxe
OR
ciscocisco_iosMatch3.2.11sgxe
OR
ciscocisco_iosMatch3.7.0sxe
OR
ciscocisco_iosMatch3.7.1sxe
OR
ciscocisco_iosMatch3.7.2sxe
OR
ciscocisco_iosMatch3.7.3sxe
OR
ciscocisco_iosMatch3.7.4sxe
OR
ciscocisco_iosMatch3.7.5sxe
OR
ciscocisco_iosMatch3.7.6sxe
OR
ciscocisco_iosMatch3.7.7sxe
OR
ciscocisco_iosMatch3.7.8sxe
OR
ciscocisco_iosMatch3.7.2tsxe
OR
ciscocisco_iosMatch3.7.0bsxe
OR
ciscocisco_iosMatch3.3.0sgxe
OR
ciscocisco_iosMatch3.3.2sgxe
OR
ciscocisco_iosMatch3.3.1sgxe
OR
ciscocisco_iosMatch3.8.0sxe
OR
ciscocisco_iosMatch3.8.1sxe
OR
ciscocisco_iosMatch3.8.2sxe
OR
ciscocisco_iosMatch3.9.1sxe
OR
ciscocisco_iosMatch3.9.0sxe
OR
ciscocisco_iosMatch3.9.2sxe
OR
ciscocisco_iosMatch3.2.0sexe
OR
ciscocisco_iosMatch3.2.1sexe
OR
ciscocisco_iosMatch3.2.2sexe
OR
ciscocisco_iosMatch3.2.3sexe
OR
ciscocisco_iosMatch3.3.0sexe
OR
ciscocisco_iosMatch3.3.1sexe
OR
ciscocisco_iosMatch3.3.2sexe
OR
ciscocisco_iosMatch3.3.3sexe
OR
ciscocisco_iosMatch3.3.4sexe
OR
ciscocisco_iosMatch3.3.5sexe
OR
ciscocisco_iosMatch3.3.0xoxe
OR
ciscocisco_iosMatch3.3.1xoxe
OR
ciscocisco_iosMatch3.3.2xoxe
OR
ciscocisco_iosMatch3.4.0sgxe
OR
ciscocisco_iosMatch3.4.2sgxe
OR
ciscocisco_iosMatch3.4.1sgxe
OR
ciscocisco_iosMatch3.4.3sgxe
OR
ciscocisco_iosMatch3.4.4sgxe
OR
ciscocisco_iosMatch3.4.5sgxe
OR
ciscocisco_iosMatch3.4.6sgxe
OR
ciscocisco_iosMatch3.4.7sgxe
OR
ciscocisco_iosMatch3.4.8sgxe
OR
ciscocisco_iosMatch3.5.0exe
OR
ciscocisco_iosMatch3.5.1exe
OR
ciscocisco_iosMatch3.5.2exe
OR
ciscocisco_iosMatch3.5.3exe
OR
ciscocisco_iosMatch3.10.0sxe
OR
ciscocisco_iosMatch3.10.1sxe
OR
ciscocisco_iosMatch3.10.2sxe
OR
ciscocisco_iosMatch3.10.3sxe
OR
ciscocisco_iosMatch3.10.4sxe
OR
ciscocisco_iosMatch3.10.5sxe
OR
ciscocisco_iosMatch3.10.6sxe
OR
ciscocisco_iosMatch3.10.1xcsxe
OR
ciscocisco_iosMatch3.10.2asxe
OR
ciscocisco_iosMatch3.10.2tsxe
OR
ciscocisco_iosMatch3.10.7sxe
OR
ciscocisco_iosMatch3.10.1xbsxe
OR
ciscocisco_iosMatch3.11.1sxe
OR
ciscocisco_iosMatch3.11.2sxe
OR
ciscocisco_iosMatch3.11.0sxe
OR
ciscocisco_iosMatch3.11.3sxe
OR
ciscocisco_iosMatch3.11.4sxe
OR
ciscocisco_iosMatch3.12.0sxe
OR
ciscocisco_iosMatch3.12.1sxe
OR
ciscocisco_iosMatch3.12.2sxe
OR
ciscocisco_iosMatch3.12.3sxe
OR
ciscocisco_iosMatch3.12.0asxe
OR
ciscocisco_iosMatch3.12.4sxe
OR
ciscocisco_iosMatch3.13.0sxe
OR
ciscocisco_iosMatch3.13.1sxe
OR
ciscocisco_iosMatch3.13.2sxe
OR
ciscocisco_iosMatch3.13.3sxe
OR
ciscocisco_iosMatch3.13.4sxe
OR
ciscocisco_iosMatch3.13.5sxe
OR
ciscocisco_iosMatch3.13.2asxe
OR
ciscocisco_iosMatch3.13.0asxe
OR
ciscocisco_iosMatch3.13.5asxe
OR
ciscocisco_iosMatch3.6.0exe
OR
ciscocisco_iosMatch3.6.1exe
OR
ciscocisco_iosMatch3.6.0aexe
OR
ciscocisco_iosMatch3.6.0bexe
OR
ciscocisco_iosMatch3.6.2aexe
OR
ciscocisco_iosMatch3.6.3exe
OR
ciscocisco_iosMatch3.6.4exe
OR
ciscocisco_iosMatch3.6.5exe
OR
ciscocisco_iosMatch3.6.6exe
OR
ciscocisco_iosMatch3.6.5aexe
OR
ciscocisco_iosMatch3.6.7exe
OR
ciscocisco_iosMatch3.14.0sxe
OR
ciscocisco_iosMatch3.14.1sxe
OR
ciscocisco_iosMatch3.14.2sxe
OR
ciscocisco_iosMatch3.14.3sxe
OR
ciscocisco_iosMatch3.15.0sxe
OR
ciscocisco_iosMatch3.15.1sxe
OR
ciscocisco_iosMatch3.15.2sxe
OR
ciscocisco_iosMatch3.15.1csxe
OR
ciscocisco_iosMatch3.15.3sxe
OR
ciscocisco_iosMatch3.3.0sqxe
OR
ciscocisco_iosMatch3.3.1sqxe
OR
ciscocisco_iosMatch3.4.0sqxe
OR
ciscocisco_iosMatch3.4.1sqxe
OR
ciscocisco_iosMatch3.7.0exe
OR
ciscocisco_iosMatch3.7.1exe
OR
ciscocisco_iosMatch3.7.2exe
OR
ciscocisco_iosMatch3.7.3exe
OR
ciscocisco_iosMatch3.7.4exe
OR
ciscocisco_iosMatch3.5.0sqxe
OR
ciscocisco_iosMatch3.5.1sqxe
OR
ciscocisco_iosMatch3.5.2sqxe
OR
ciscocisco_iosMatch3.16.0sxe
OR
ciscocisco_iosMatch3.16.1sxe
OR
ciscocisco_iosMatch3.16.0asxe
OR
ciscocisco_iosMatch3.16.1asxe
OR
ciscocisco_iosMatch3.16.2sxe
OR
ciscocisco_iosMatch3.16.2asxe
OR
ciscocisco_iosMatch3.16.0bsxe
OR
ciscocisco_iosMatch3.16.0csxe
OR
ciscocisco_iosMatch3.16.2bsxe
OR
ciscocisco_iosMatch3.17.0sxe
OR
ciscocisco_iosMatch3.17.1sxe
OR
ciscocisco_iosMatch3.17.1asxe
OR
ciscocisco_iosMatch16.1.1xe
OR
ciscocisco_iosMatch16.1.2xe
OR
ciscocisco_iosMatch16.2.1xe
OR
ciscocisco_iosMatch3.8.0exe
OR
ciscocisco_iosMatch3.8.1exe
OR
ciscocisco_iosMatch3.8.2exe
OR
ciscocisco_iosMatch3.18.0asxe
OR
ciscocisco_iosMatch3.18.0sxe
VendorProductVersionCPE
ciscocisco_ios3.2sgcpe:2.3:o:cisco:cisco_ios:3.2sg:xe:*:*:*:*:*:*
ciscocisco_ios3.7scpe:2.3:o:cisco:cisco_ios:3.7s:xe:*:*:*:*:*:*
ciscocisco_ios3.3sgcpe:2.3:o:cisco:cisco_ios:3.3sg:xe:*:*:*:*:*:*
ciscocisco_ios3.8scpe:2.3:o:cisco:cisco_ios:3.8s:xe:*:*:*:*:*:*
ciscocisco_ios3.9scpe:2.3:o:cisco:cisco_ios:3.9s:xe:*:*:*:*:*:*
ciscocisco_ios3.2secpe:2.3:o:cisco:cisco_ios:3.2se:xe:*:*:*:*:*:*
ciscocisco_ios3.3secpe:2.3:o:cisco:cisco_ios:3.3se:xe:*:*:*:*:*:*
ciscocisco_ios3.3xocpe:2.3:o:cisco:cisco_ios:3.3xo:xe:*:*:*:*:*:*
ciscocisco_ios3.4sgcpe:2.3:o:cisco:cisco_ios:3.4sg:xe:*:*:*:*:*:*
ciscocisco_ios3.5ecpe:2.3:o:cisco:cisco_ios:3.5e:xe:*:*:*:*:*:*
Rows per page:
1-10 of 1691

Related

cvelist 1
openvas 1
prion 1
nvd 1
cve 1
cvelist
cvelist
CVE-2017-6606
2017-04-07 17:00:00
openvas
openvas
Cisco IOS XE Software Startup Script Local Command Execution Vulnerability
2017-04-07 00:00:00
prion
prion
Design/Logic Flaw
2017-04-07 17:59:00
nvd
nvd
CVE-2017-6606
2017-04-07 17:59:00
cve
cve
CVE-2017-6606
2017-04-07 17:59:00

EPSS

0.001

Percentile

48.2%

JSON
Related for CISCO-SA-20170405-IOSXE
cvelist1openvas1prion1nvd1cve1