2 matches found
Cisco IOS XE Software Web UI RCE (cisco-sa-iosxe-webui-rce-uk8BXcUD)
According to its self-reported version, Cisco IOS XE Software is affected by a remote code execution vulnerability. An authenticated, remote attacker can exploit this, by supplying improperly validated input, to execute arbitrary code with root privileges on the underlying Linux shell. Please see...
CVE-2020-3218
CVE-2020-3218 describes a Cisco IOS XE Software Web UI remote code execution vulnerability caused by improper validation of user input. An authenticated admin can create a malicious file on the device and upload another to execute arbitrary code with root privileges on the Linux shell. Affected s...