2 matches found
CVE-2022-20676
Cisco IOS XE Software is affected by CVE-2022-20676, a local privilege-escalation vulnerability in the Tcl interpreter. Insufficient input validation in Tcl code loaded on an affected device can allow an authenticated, local attacker to escalate from privilege level 15 to root. By default, Tcl sh...
Cisco IOS XE Software Tool Command Language Privilege Escalation (cisco-sa-iosxe-priv-esc-grbtubU)
According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. - A vulnerability in the Tool Command Language Tcl interpreter of Cisco IOS XE Software could allow an authenticated, local attacker to escalate from privilege level 15 to root-level privileges. This...