Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco IOS XE Software ASIC Register Write Vulnerability
Vulnerability Description
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to write values to the underlying memory of an affected device. The vulnerability is due to improper input validation and authorization of specific commands that a user can execute within the CLI. An attacker could exploit this vulnerability by authenticating to an affected device and issuing a specific set of commands. A successful exploit could allow the attacker to modify the configuration of the device to cause it to be non-secure and abnormally functioning.
CVSS Information
N/A
Vulnerability Type
将资源暴露给错误范围
Vulnerability Title
Cisco IOS XE 输入验证错误漏洞
Vulnerability Description
Cisco IOS XE是美国思科(Cisco)公司的一套为其网络设备开发的操作系统。 Cisco IOS XE Polaris 16.x及之后的版本中的CLI存在安全漏洞,该漏洞源于程序没有正确验证和授权一些命令。本地攻击者可利用该漏洞向底层内存中写入值。
CVSS Information
N/A
Vulnerability Type
N/A