3 matches found
Cisco IOS, IOS XE, IOS XR, and NX-OS Software One Platform Kit Remote Code Execution (CVE-2020-3217)
A vulnerability in the Topology Discovery Service of Cisco One Platform Kit onePK in Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a denial of service DoS condition on...
Cisco IOS Software One Platform Kit Remote Code Execution Vulnerability (cisco-sa-ios-nxos-onepk-rce-6Hhyt4dC)
According to its self-reported version, Cisco IOS is affected by a remote code execution vulnerability. Therefore there exists in Cisco One Platform Kit due to a vulnerability in the Topology Discovery Service. An unauthenticated, adjacent attacker can exploit this to bypass authentication and...
CVE-2020-3217
The CVE-2020-3217 issue affects Cisco IOS, IOS XE, IOS XR, and NX-OS platforms using the One Platform Kit (onePK) Topology Discovery Service. The root cause is insufficient length restrictions when parsing Cisco Discovery Protocol messages, allowing an unauthenticated adjacent attacker to trigger...