2 matches found
CVE-2021-1485 Cisco IOS XR Software Command Injection Vulnerability
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges on the underlying Linux operating system OS of an affected device. This vulnerability is due to insufficient input validation of...
CVE-2021-1485
CVE-2021-1485 describes a local command-injection vulnerability in the CLI of Cisco IOS XR Software. An authenticated, local attacker can supply crafted input to affected CLI commands, exploiting insufficient input validation to execute arbitrary commands on the underlying Linux OS with root priv...