Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco IOS XR Software for Cisco 8000 Series Routers and Network Convergence System 540 Series Routers Image Verification Vulnerabilities
Vulnerability Description
Multiple vulnerabilities in Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for the Cisco 8000 Series Routers could allow an authenticated, local attacker to execute unsigned code during the boot process on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
密码学签名的验证不恰当
Vulnerability Title
多款Cisco产品数据伪造问题漏洞
Vulnerability Description
Cisco 8000 Series Router和Cisco Network Convergence System 540 Series Routers都是美国Cisco公司的一款路由器设备。 多款 Cisco 路由器的 Cisco IOS XR 中存在数据伪造问题漏洞。该漏洞是由于受影响的设备上的GRUB引导加载程序版本未锁定引起的。攻击者可以通过从GRUB菜单修改引导过程来利用此漏洞。成功的利用可能使攻击者绕过信任启动链。以下产品及版本受到影响:Cisco 8000 Series Router,Cis
CVSS Information
N/A
Vulnerability Type
N/A