Multiple vulnerabilities in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow an authenticated, remote attacker to bypass authorization and execute a subset of CLI commands on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:HCisco Asr 5000
HWCiscowszystkie wersjeCisco Asr 5500
HWCiscowszystkie wersjeCisco Asr 5700
HWCiscowszystkie wersjeCisco Staros
OSCisco21.19.0 – 21.19.11 (bez)21.19.n – 21.19.n7 (bez)21.20.0 – 21.20.8 (bez)< 21.16.921.17.0 – 21.17.10 (bez)21.18.0 – 21.18.16 (bez)Cisco Virtualized Packet Core
APPCiscowszystkie wersje
Related vulnerabilities
Erlang/OTP SSH — nieuwierzytelniony RCE (CVSS 10.0)
A vulnerability in the key-based SSH authentication feature of Cisco StarOS Software could allow an authentica...
A vulnerability in the processing of malformed Common Industrial Protocol (CIP) packets that are sent to Cisco...
Multiple vulnerabilities in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow a...
A vulnerability in the internal packet-processing functionality of the Cisco StarOS operating system running o...