CVE-2020-3204
MEDIUMCisco IOS - Authenticated Remote Code Execution via Tcl Interpreter
Title source: llmDescription
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker with privileged EXEC credentials to execute arbitrary code on the underlying operating system (OS) with root privileges. The vulnerability is due to insufficient input validation of data passed to the Tcl interpreter. An attacker could exploit this vulnerability by loading malicious Tcl code on an affected device. A successful exploit could allow the attacker to cause memory corruption or execute the code with root privileges on the underlying OS of the affected device.
References (1)
Core 1
Core References
Patch, Vendor Advisory vendor-advisory
x_refsource_cisco
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tcl-ace-C9KuVKmm
Scores
CVSS v3
6.7
EPSS
0.0006
EPSS Percentile
19.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-20
Status
published
Products (50)
cisco/ios
12.2\(6\)i1
cisco/ios
12.2\(33\)sre
cisco/ios
12.2\(33\)sre0a
cisco/ios
12.2\(33\)sre1
cisco/ios
12.2\(33\)sre2
cisco/ios
12.2\(33\)sre3
cisco/ios
12.2\(33\)sre4
cisco/ios
12.2\(33\)sre5
cisco/ios
12.2\(33\)sre6
cisco/ios
12.2\(33\)sre7
... and 40 more
Published
Jun 03, 2020
Tracked Since
Feb 18, 2026