CVE-2020-3216
MEDIUMCisco IOS XE SD-WAN - Unauthenticated Authentication Bypass via Boot Initialization Interruption
Title source: llmDescription
A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, physical attacker to bypass authentication and gain unrestricted access to the root shell of an affected device. The vulnerability exists because the affected software has insufficient authentication mechanisms for certain commands. An attacker could exploit this vulnerability by stopping the boot initialization of an affected device. A successful exploit could allow the attacker to bypass authentication and gain unrestricted access to the root shell of the affected device.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-auth-b-NzwhJHH7
Scores
CVSS v3
6.8
EPSS
0.0009
EPSS Percentile
25.5%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-287
Status
published
Products (7)
cisco/ios_xe_sd-wan
16.9.0
cisco/ios_xe_sd-wan
16.9.1
cisco/ios_xe_sd-wan
16.9.2
cisco/ios_xe_sd-wan
16.9.3
cisco/ios_xe_sd-wan
16.9.4
cisco/ios_xe_sd-wan
16.10.0
cisco/ios_xe_sd-wan
16.10.1
Published
Jun 03, 2020
Tracked Since
Feb 18, 2026