3 matches found
CVE-2023-20236
A vulnerability in the iPXE boot function of Cisco IOS XR software could allow an authenticated, local attacker to install an unverified software image on an affected device. This vulnerability is due to insufficient image verification. An attacker could exploit this vulnerability by manipulating...
CVE-2023-20236
A vulnerability in the iPXE boot function of Cisco IOS XR software could allow an authenticated, local attacker to install an unverified software image on an affected device. This vulnerability is due to insufficient image verification. An attacker could exploit this vulnerability by manipulating...
CVE-2023-20236
Cisco IOS XR’s iPXE boot function is vulnerable to an image-verification bypass. An authenticated, local attacker could manipulate iPXE boot parameters to load an unverified/rogue image on the device due to insufficient image verification. Cisco has released software updates addressing this vulne...