A vulnerability in the enhanced Preboot eXecution Environment (PXE) boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the management interface of hardware platforms that are running Cisco IOS XR Software only. The vulnerability exists because internal commands that are issued when the PXE network boot process is loading a software image are not properly verified. An attacker could exploit this vulnerability by compromising the PXE boot server and replacing a valid software image with a malicious one. Alternatively, the attacker could impersonate the PXE boot server and send a PXE boot reply with a malicious file. A successful exploit could allow the attacker to execute unsigned code on the affected device. Note: To fix this vulnerability, both the Cisco IOS XR Software and the BIOS must be upgraded. The BIOS code is included in Cisco IOS XR Software but might require additional installation steps. For further information, see the Fixed Software section of this advisory.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HCisco A99 Rp2 Se
HWCiscowszystkie wersjeCisco A99 Rp2 Se Firmware
OSCisco< 14.35Cisco A99 Rp2 Tr
HWCiscowszystkie wersjeCisco A99 Rp2 Tr Firmware
OSCisco< 14.35Cisco A99 Rp3 Se
HWCiscowszystkie wersjeCisco A99 Rp3 Se Firmware
OSCisco< 30.23Cisco A99 Rp3 Tr
HWCiscowszystkie wersjeCisco A99 Rp3 Tr Firmware
OSCisco< 30.23Cisco A99 Rsp Se
HWCiscowszystkie wersjeCisco A99 Rsp Se Firmware
OSCisco< 16.14Cisco A99 Rsp Tr
HWCiscowszystkie wersjeCisco A99 Rsp Tr Firmware
OSCisco< 16.14Cisco A9k Rsp5 Se
HWCiscowszystkie wersjeCisco A9k Rsp5 Se Firmware
OSCisco< 31.20Cisco A9k Rsp5 Tr
HWCiscowszystkie wersjeCisco A9k Rsp5 Tr Firmware
OSCisco< 31.20Cisco A9k Rsp880 Lt Se
HWCiscowszystkie wersjeCisco A9k Rsp880 Lt Se Firmware
OSCisco< 17.34Cisco A9k Rsp880 Lt Tr
HWCiscowszystkie wersjeCisco A9k Rsp880 Lt Tr Firmware
OSCisco< 17.34Cisco A9k Rsp880 Se
HWCiscowszystkie wersjeCisco A9k Rsp880 Se Firmware
OSCisco< 10.65Cisco A9k Rsp880 Tr
HWCiscowszystkie wersjeCisco A9k Rsp880 Tr Firmware
OSCisco< 10.65Cisco Asr 9901 Rp
HWCiscowszystkie wersjeCisco Asr 9901 Rp Firmware
OSCisco< 22.20Cisco IOS XR
OSCisco< 6.5.2< 1.12< 1.21< 6.6.25< 7.2.17.0.0 – 7.0.2 (bez)Cisco N540 12z20g Sys A\/d
HWCiscowszystkie wersjeCisco N540 12z20g Sys A\/d Firmware
OSCisco< 1.15Cisco N540 24z8q2c M
HWCiscowszystkie wersje
Related vulnerabilities
RCE w web services Cisco ASA, FTD, IOS, IOS XE, IOS XR przez HTTP
A vulnerability in the sysadmin virtual machine (VM) on Cisco ASR 9000 Series Aggregation Services Routers run...
Multiple vulnerabilities in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Sof...
A vulnerability in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Software cou...
A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could allow an unauth...