2 matches found
CVE-2019-12671
CVE-2019-12671 is Cisco IOS XE CLI consent-token bypass that allows an authenticated, local attacker to gain shell access and execute commands on the underlying OS by bypassing consent token enforcement. Affected software is Cisco IOS XE; root cause is insufficient enforcement of the consent toke...
CVE-2019-12671 Cisco IOS XE Software Consent Token Bypass Vulnerability
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to gain shell access on an affected device and execute commands on the underlying operating system OS. The vulnerability is due to insufficient enforcement of the consent token in authorizing shell...