CVE-2024-20320

A vulnerability in the SSH client feature of Cisco IOS XR Software for Cisco 8000 Series Routers and Cisco Network Convergence System (NCS) 540 Series and 5700 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient validation of arguments that are included with the SSH client CLI command. An attacker with low-privileged access to an affected device could exploit this vulnerability by issuing a crafted SSH client command to the CLI. A successful exploit could allow the attacker to elevate privileges to root on the affected device.

Severity	HIGH
CVSS	7.8
CWE	CWE-266
KEV
Published	2 years ago
Modified	9 months ago

Related Products

Product	Advisory
Cisco Nexus Dashboard	cisco-sa-iosxr-ssh-privesc-eWDMKew3
Cisco Network Convergence System 540 Series	cisco-sa-iosxr-ssh-privesc-eWDMKew3
Cisco IOS Software	cisco-sa-iosxr-ssh-privesc-eWDMKew3
Cisco Catalyst PON Series Switches	cisco-sa-iosxr-ssh-privesc-eWDMKew3
Cisco 8000 Series Routers	cisco-sa-iosxr-ssh-privesc-eWDMKew3
Cisco 5700 Series Routers	cisco-sa-iosxr-ssh-privesc-eWDMKew3
Cisco IOS XR Software	cisco-sa-iosxr-ssh-privesc-eWDMKew3
Cisco IOS	cisco-sa-iosxr-ssh-privesc-eWDMKew3