4 matches found
Cisco IOS XR Software Image Verification Bypass Vulnerability
A vulnerability in the installation process of Cisco IOS XR Software could allow an authenticated, local attacker to bypass Cisco IOS XR Software image signature verification and load unsigned software on an affected device. To exploit this vulnerability, the attacker must have root-system...
Cisco IOS XR Data Forgery Issue Vulnerability
Cisco IOS XR is a set of operating systems developed by the American company Cisco Cisco for its network equipment. Cisco IOS XR suffers from a data forgery vulnerability that stems from insufficient module validation during software loading, which could be exploited by an attacker to launch...
CVE-2024-20397
Cisco NX-OS Software is affected by a bootloader vulnerability (CVE-2024-20397) that allows bypassing image signature verification. The issue stems from insecure bootloader settings and can be exploited by executing bootloader commands to load unverified software. Attacker access requirements: un...
CVE-2022-20706
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned softwa...