Lucene search
K

311 matches found

CNVD
CNVD
added 2020/10/09 12:0 a.m.1 views

Cisco StarOS Elevation of Privilege Vulnerability (CNVD-2020-57576)

Cisco StarOS is a router operating system that controls the entire system logic and can control processes and CLIs. An elevation of privilege vulnerability exists in the CLI of Cisco StarOS versions prior to 21.19.n4 used by Cisco ASR 5000 series routers. The vulnerability stems from insufficient...

7.2CVSS8.2AI score0.00377EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/10/09 12:0 a.m.73 views

Cisco StarOS Privilege Escalation (cisco-sa-staros-priv-esc-gGCUMFxv)

According to its self-reported version, the Cisco StarOS operating system on the remote Cisco ASR 5000 series router is affected by a privilege escalation vulnerability due to insufficient validation of CLI commands. An authenticated, local attacker can exploit this, by sending crafted commands t...

7.2CVSS7.3AI score0.00377EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/10/09 12:0 a.m.74 views

Cisco StarOS Privilege Escalation (cisco-sa-staros-privilege-esc-pyb7YTd)

According to its self-reported version, the Cisco StarOS operating system on the remote Cisco ASR 5000 series router is affected by a privilege escalation vulnerability due to insufficient validation of CLI commands. An authenticated, local attacker can exploit this, by sending crafted commands t...

7.2CVSS7.3AI score0.00387EPSS
Exploits0References3
NVD
NVD
added 2020/10/08 5:15 a.m.15 views

CVE-2020-3602

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

7.2CVSS0.00387EPSS
Exploits0References1
OSV
OSV
added 2020/10/08 5:15 a.m.3 views

CVE-2020-3601

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

6.7CVSS6.9AI score0.00377EPSS
Exploits0References1
NVD
NVD
added 2020/10/08 5:15 a.m.17 views

CVE-2020-3601

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

7.2CVSS0.00377EPSS
Exploits0References1
OSV
OSV
added 2020/10/08 5:15 a.m.5 views

CVE-2020-3602

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

6.7CVSS6.9AI score0.00387EPSS
Exploits0References1
Prion
Prion
added 2020/10/08 5:15 a.m.21 views

Input validation

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

7.2CVSS6.9AI score0.00377EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/10/08 5:15 a.m.15 views

Input validation

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

7.2CVSS7AI score0.00387EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/10/08 4:21 a.m.71 views

CVE-2020-3602

CVE-2020-3602 affects Cisco StarOS on Cisco ASR 5000 Series routers. The issue stems from insufficient input validation in the CLI, allowing an authenticated, local attacker with valid credentials to craft CLI commands and execute arbitrary code with root privileges. Documents consistently descri...

7.2CVSS6.8AI score0.00387EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/10/08 4:21 a.m.20 views

CVE-2020-3602 Cisco StarOS Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

6.3CVSS7AI score0.00387EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/10/08 4:21 a.m.6 views

CVE-2020-3602 Cisco StarOS Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

6.3CVSS7.8AI score0.00387EPSS
Exploits0References1
CVE
CVE
added 2020/10/08 4:21 a.m.79 views

CVE-2020-3601

CVE-2020-3601 affects Cisco StarOS on ASR 5000 Series Routers. The vulnerability arises from insufficient input validation in the CLI, enabling an authenticated, local attacker with administrative credentials to execute arbitrary code with root privileges. Reports describe privilege escalation by...

7.2CVSS6.1AI score0.00377EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/10/08 4:21 a.m.10 views

CVE-2020-3601 Cisco StarOS Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

4.4CVSS7.7AI score0.00377EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/10/08 4:21 a.m.21 views

CVE-2020-3601 Cisco StarOS Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

4.4CVSS6.9AI score0.00377EPSS
Exploits0References1
NCSC
NCSC
added 2020/10/08 12:0 a.m.4 views

Vulnerabilities fixed in Cisco StarOS for ASR 5000 Series routers

Cisco has fixed multiple vulnerabilities in StarOS for ASR 5000 Series routers. A local malicious person with limited administrator privileges could potentially exploit the vulnerabilities to execute arbitrary code under root privileges. Cisco has released updates to fix the vulnerabilities in...

7.2CVSS7.5AI score0.00387EPSS
Exploits0
Cisco
Cisco
added 2020/10/07 4:0 p.m.17 views

Cisco StarOS Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

4.4CVSS2.9AI score0.00377EPSS
Exploits0References1
Cisco
Cisco
added 2020/10/07 4:0 p.m.21 views

Cisco StarOS Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

6.3CVSS3AI score0.00387EPSS
Exploits0References1
NVD
NVD
added 2020/08/17 6:15 p.m.20 views

CVE-2020-3500

A vulnerability in the IPv6 implementation of Cisco StarOS could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to insufficient validation of incoming IPv6 traffic. An attacker could exploit this vulnerability b...

8.6CVSS7.1AI score0.01618EPSS
Exploits0References1
OSV
OSV
added 2020/08/17 6:15 p.m.5 views

CVE-2020-3500

A vulnerability in the IPv6 implementation of Cisco StarOS could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to insufficient validation of incoming IPv6 traffic. An attacker could exploit this vulnerability b...

8.6CVSS7.3AI score0.01618EPSS
Exploits0References1
Rows per page
Query Builder