CVE-2020-3138
CVE-2020-3138 affects Cisco Enterprise NFV Infrastructure Software (NFV NFVIS) upgrade component. The issue is due to insufficient signature verification in the upgrade process, allowing an authenticated, local attacker who can supply a crafted upgrade file to upload malicious code to an affected...