CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/03/13 12:0 a.m.•0 views

Cisco IOS XR Software CLI Privilege Escalation (cisco-sa-iosxr-privesc-bF8D5U4W) (CVE-2026-20046)

According to its self-reported version, Cisco IOS XR is affected by a vulnerability. - A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges and gain full administrative control of an affecte...

8.8CVSS6.9AI score0.00033EPSS

Exploits0References4

NCSC•added 2026/03/12 2:44 p.m.•6 views

Vulnerabilities fixed in Cisco IOS XR

Cisco has fixed vulnerabilities in Cisco IOS XR Software. The vulnerabilities are in the command-line interface CLI of Cisco IOS XR, which allows authenticated local attackers to execute arbitrary root-level commands or obtain full administrative privileges. In addition, there is a problem with t...

8.8CVSS6.1AI score0.00098EPSS

Exploits0References3

EUVD•added 2026/03/11 6:30 p.m.•2 views

EUVD-2026-11216

NVD•added 2026/03/11 5:16 p.m.•3 views

CVE-2026-20046

8.8CVSS0.00033EPSS

Vulnrichment•added 2026/03/11 4:31 p.m.•1 views

CVE-2026-20046 Cisco IOS XR Software CLI Privilege Escalation Vulnerability

CVE•added 2026/03/11 4:31 p.m.•9 views

CVE-2026-20046

CVE-2026-20046 affects Cisco IOS XR Software. The vulnerability stems from an incorrect mapping of a CLI command to task groups, allowing an authenticated, low-privileged local attacker to bypass task group checks and elevate privileges to full administrative control. Impact stated as privilege e...

ATTACKERKB•added 2026/03/11 4:31 p.m.•2 views

CVE-2026-20046

Exploits0References2Affected Software1

Positive Technologies•added 2026/03/11 12:0 a.m.•2 views

PT-2026-24729

EUVD•added 2025/10/07 12:30 a.m.•1 views

Exploits0References10

EUVD-2020-24744

Malware in sbrugna...

7.8CVSS7.7AI score0.00043EPSS

SUSE CVE•added 2025/09/22 11:43 p.m.•1 views

SUSE CVE-2021-47209

In the Linux kernel, the following vulnerability has been resolved: sched/fair: Prevent dead task groups from regaining cfsrq's Kevin is reporting crashes which point to a use-after-free of a cfsrq in updateblockedaverages. Initial debugging revealed that we've live cfsrq's onlist=1 in an about t...

5.5CVSS5.9AI score0.00017EPSS

Exploits0References8

Tenable Nessus•added 2025/05/06 12:0 a.m.•6 views

CBL Mariner 2.0 Security Update: kernel (CVE-2025-21919)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21919 advisory. - In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix potential memory...

7.8CVSS6.2AI score0.00014EPSS

Cvelist•added 2025/04/01 3:40 p.m.•12 views

CVE-2025-21919 sched/fair: Fix potential memory corruption in child_cfs_rq_on_list

In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix potential memory corruption in childcfsrqonlist childcfsrqonlist attempts to convert a 'prev' pointer to a cfsrq. This 'prev' pointer can originate from struct rq's leafcfsrqlist, making the conversion invalid and...

0.00014EPSS

Exploits0References6

Cvelist•added 2024/04/10 7:1 p.m.•16 views

CVE-2021-47209 sched/fair: Prevent dead task groups from regaining cfs_rq's

6.8AI score0.00017EPSS

CVE•added 2024/04/10 7:1 p.m.•76 views

CVE-2021-47209

The CVE-2021-47209 issue affects the Linux kernel’s scheduler, specifically sched/fair with the cfs_rq handling. A use-after-free of a cfs_rq occurs when a dying task group is unlinked or partially unlinked while a concurrent timer/race (tg_unthrottle_up via sched_cfs_period_timer) can re-add cfs...

5.5CVSS6.6AI score0.00017EPSS

Exploits0References2Affected Software1

Tenable Nessus•added 2020/09/25 12:0 a.m.•25 views

Cisco IOS XR Authenticated User Privilege Escalation (cisco-sa-iosxr-cli-privescl-sDVEmhqv)

According to its self-reported version, Cisco IOS XR Software is affected by a privilege escalation vulnerability in task group assignment for a specific CLI command due to incorrect mapping of task groups assignments. An authenticated, local attacker with read permissions could exploit this...

8.4CVSS7.6AI score0.0003EPSS

Exploits0References5

Tenable Nessus•added 2020/09/25 12:0 a.m.•37 views

Cisco IOS XR Software Authenticated User Privilege Escalation (cisco-sa-iosxr-LJtNFjeN)

According to its self-reported version, Cisco IOS XR Software is affected by a privilege escalation vulnerability in task group assignment for a specific CLI command due to incorrect mapping to task groups. An attacker could exploit this vulnerability by first authenticating to the local CLI shel...

7.8CVSS7.5AI score0.00043EPSS

Exploits0References3

OSV•added 2020/09/04 3:15 a.m.•1 views

CVE-2020-3473

A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local CLI shell user to elevate privileges and gain full administrative control of the device. The vulnerability is due to incorrect mapping of a command to task groups withi...

7.8CVSS7.1AI score0.00043EPSS

OSV•added 2020/09/04 3:15 a.m.•1 views

CVE-2020-3530

A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to execute that command, even though administrative privileges should be required. The attacker must have valid credentials on the affected device. The...

8.4CVSS7.2AI score

Cvelist•added 2020/09/04 2:26 a.m.•13 views

CVE-2020-3473 Cisco IOS XR Software Authenticated User Privilege Escalation Vulnerability

7.8CVSS7.8AI score0.00043EPSS