Cisco IOS XE Software Digital Signature Verification Bypass Vulnerability

A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authenticated, local attacker to install and boot a malicious software image or execute unsigned binaries on an affected device. The vulnerability exists because, under certain circumstances, an affected device can be configured to not verify the digital signatures of system image files during the boot process. An attacker could exploit this vulnerability by abusing a specific feature that is part of the device boot process. A successful exploit could allow the attacker to install and boot a malicious software image or execute unsigned binaries on the targeted device.

N/A

密码学签名的验证不恰当

Cisco Catalyst 3850 Series Switches和9300 Series Switches IOS XE 数据伪造问题漏洞

Cisco Catalyst 3850 Series Switches和Cisco Catalyst 9300 Series Switches都是美国思科（Cisco）公司的产品。Cisco Catalyst 3850 Series Switches是一款3850系列交换机。Cisco Catalyst 9300 Series Switches是一款9300系列交换机。IOS XE是一套为其网络设备开发的操作系统。 Cisco Catalyst 3850 Series Switches和9300 Seri

N/A

N/A