The vulnerability of the Routed PON Controller Software component in the Cisco IOS XR operating system of Cisco NCS 540 Series Routers, NCS 5500 Series Routers, and NCS 5700 Series Routers allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Routed PON Controller Software in the Cisco IOS XR operating system for Cisco NCS 540 Series Routers, NCS 5500 Series Routers, and NCS 5700 Series Routers is related to the storage of passwords in an exposed manner. Exploiting this vulnerability can allow a perpetrator to...

CVE-2024-20320

A vulnerability in the SSH client feature of Cisco IOS XR Software for Cisco 8000 Series Routers and Cisco Network Convergence System NCS 540 Series and 5700 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to...

CVE-2024-20320

CVE-2024-20320 affects Cisco IOS XR Software on Cisco 8000 Series Routers and NCS 540/5700 Series; the issue is due to insufficient validation of arguments in the SSH client CLI command, allowing an authenticated, low-privileged attacker to escalate to root on the device. Cisco states software up...

Cisco IOS XR 安全漏洞

Cisco IOS XR is an operating system developed by Cisco for its network devices. A security vulnerability exists in Cisco IOS XR, which stems from a security issue in GRand Unified Bootloader GRUB, which can be exploited by an attacker to view sensitive files on the console using the GRUB bootload...

CVE-2021-34708

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...

CVE-2021-34708 Cisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification Vulnerabilities

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...

Cisco IOS XR Software for 8000 Series Routers Network Convergence System 540 Series Routers Privilege Escalation (cisco-sa-iosxr-pe-QpzCAePe)

According to its self-reported version, Cisco IOS XR Software for the Cisco 8000 Series Routers and Network Convergence System 540 Series Routers running NCS540L software images is affected by an privilege escalation vulnerability in its CLI command due to insufficient validation of command line...

The vulnerability of the file checking function of Cisco IOS XR routers from Network Convergence System’s 540 Series and Cisco 8000 Series allows a hacker to execute arbitrary code.

The vulnerability of the file checking function for Cisco IOS XR routers from the Network Convergence System 540 Series and Cisco 8000 Series is related to errors in the cryptographic signature verification. Exploiting this vulnerability can allow a perpetrator to execute arbitrary code...

CVE-2021-1244

Multiple vulnerabilities in Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for the Cisco 8000 Series Routers could allow an authenticated, local attacker to execute unsigned code during the boot process on...

CVE-2021-1370

CVE-2021-1370 affects Cisco IOS XR Software on Cisco 8000 Series Routers and NCS540L software images. A vulnerability in a CLI command allows an authenticated, local attacker to escalate privileges to root due to insufficient validation of command line arguments. Exploitation requires a valid acc...

CVE-2021-1136

CVE-2021-1136 affects Cisco IOS XR for Cisco 8000 Series Routers and NCS 540 Routers running NCS540L images. The issue allows an authenticated, local attacker to execute unsigned code during boot (GRUB boot loader vulnerability and ISO packaging signing issues). Affected devices include NCS 540 S...

CVE-2012-0365

Directory traversal vulnerability in the Local TFTP file-upload application on Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allows remote authenticated users to upload software to arbitrary directories via unspecified...