2 matches found
CVE-2017-6606
A vulnerability in a startup script of Cisco IOS XE Software could allow an unauthenticated attacker with physical access to the targeted system to execute arbitrary commands on the underlying operating system with the privileges of the root user. More Information: CSCuz06639 CSCuz42122. Known...
CVE-2017-6606
Cisco IOS XE Software startup script local command execution vulnerability (CVE-2017-6606) allows an unauthenticated attacker with physical access to a targeted device to run arbitrary commands with root privileges. Root cause: insufficient validation of ROMMON variables in the startup script, en...