3 matches found
CVE-2024-20262
A vulnerability in the Secure Copy Protocol SCP and SFTP feature of Cisco IOS XR Software could allow an authenticated, local attacker to create or overwrite files in a system directory, which could lead to a denial of service DoS condition. The attacker would require valid user credentials to...
Cisco IOS XR Software Authenticated CLI SCP/SFTP DoS (cisco-sa-iosxr-scp-dos-kb6sUUHw)
According to its self-reported version, Cisco IOS XR is affected by a vulnerability. - A vulnerability in the Secure Copy Protocol SCP and SFTP feature of Cisco IOS XR Software could allow an authenticated, local attacker to create or overwrite files in a system directory, which could lead to a...
CVE-2024-20262
CVE-2024-20262 affects Cisco IOS XR Software SCP/SFTP CLI handling. The issue is a lack of validation of SCP and SFTP CLI input parameters, enabling an authenticated, local attacker to create or overwrite files in a system directory and cause a DoS. Exploitation requires a local user with valid c...