CVE-2020-3208

MEDIUM

Cisco IOS Software - Privilege Escalation

Title source: llm

Description

A vulnerability in the image verification feature of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) could allow an authenticated, local attacker to boot a malicious software image on an affected device. The vulnerability is due to insufficient access restrictions on the area of code that manages the image verification feature. An attacker could exploit this vulnerability by first authenticating to the targeted device and then logging in to the Virtual Device Server (VDS) of an affected device. The attacker could then, from the VDS shell, disable Cisco IOS Software integrity (image) verification. A successful exploit could allow the attacker to boot a malicious Cisco IOS Software image on the targeted device. To exploit this vulnerability, the attacker must have valid user credentials at privilege level 15.

References (1)

Core 1

Core References

Patch, Vendor Advisory vendor-advisory x_refsource_cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-ir800-img-verif-wHhLYHjK

Scores

CVSS v3 6.7

EPSS 0.0006

EPSS Percentile 17.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-264

Status published

Products (50)

cisco/ios 12.2\(60\)ez16

cisco/ios 15.0\(2\)sg11a

cisco/ios 15.3\(3\)jaa1

cisco/ios 15.3\(3\)jpj

cisco/ios 15.5\(3\)m0a

cisco/ios 15.5\(3\)m1

cisco/ios 15.5\(3\)m2

cisco/ios 15.5\(3\)m2a

cisco/ios 15.5\(3\)m3

cisco/ios 15.5\(3\)m4

... and 40 more

Published Jun 03, 2020

Tracked Since Feb 18, 2026