Authorization

2021-06-0417:15:00

PRIOn knowledge base

www.prio-n.com

8.6 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.5%

JSON

Multiple vulnerabilities in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow an authenticated, remote attacker to bypass authorization and execute a subset of CLI commands on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

CPENameOperatorVersion
staroslt21.16.9
starosge21.17.0
staroslt21.17.10
starosge21.18.0
staroslt21.18.16
starosge21.19.0
staroslt21.19.11
staroseq>= 21.19.n AND < 21.19.n7
starosge21.20.0
staroslt21.20.8

Name	Operator	Version
staros	lt	21.16.9
staros	ge	21.17.0
staros	lt	21.17.10
staros	ge	21.18.0
staros	lt	21.18.16
staros	ge	21.19.0
staros	lt	21.19.11
staros	eq	>= 21.19.n AND < 21.19.n7
staros	ge	21.20.0
staros	lt	21.20.8