Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco IOS XE Software Digital Signature Verification Bypass Vulnerability
Vulnerability Description
A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authenticated, local attacker to install a malicious software image or file on an affected device. The vulnerability is due to the affected software improperly verifying digital signatures for software images and files that are uploaded to a device. An attacker could exploit this vulnerability by uploading a malicious software image or file to an affected device. A successful exploit could allow the attacker to bypass digital signature verification checks for software images and files and install a malicious software image or file on the affected device.
CVSS Information
N/A
Vulnerability Type
密码学签名的验证不恰当
Vulnerability Title
Cisco IOS XE Software 安全漏洞
Vulnerability Description
Cisco IOS XE Software是美国思科(Cisco)公司的一套为其网络设备开发的操作系统。 Cisco IOS XE Software中的Image Verification功能存在安全漏洞,该漏洞源于受影响的软件没有正确的验证上传到设备上的软件映像和文件的电子签名。本地攻击者可通过上传恶意的软件映像或文件利用该漏洞绕过电子签名验证检测并在受影响的设备上安装恶意的软件映像或文件。
CVSS Information
N/A
Vulnerability Type
N/A