CVE-2017-6795
Cisco IOS XE Software on Cisco ASR 920 Series Routers is affected by CVE-2017-6795 due to improper input validation in the USB-modem code (platform usb modem CLI command). A local, authenticated attacker could exploit this to overwrite arbitrary files on the device’s underlying operating system. ...