CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-3396

A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive (SSD) for Cisco IOS XE Software could allow an authenticated, physical attacker to remove the USB 3.0 SSD and modify sensitive areas of the file system, including the namespace container protections. The vulnerability occurs because the USB 3.0 SSD control data is not stored on the internal boot flash. An attacker could exploit this vulnerability by removing the USB 3.0 SSD, modifying or deleting files on the USB 3.0 SSD by using another device, and then reinserting the USB 3.0 SSD on the original device. A successful exploit could allow the attacker to remove container protections and perform file actions outside the namespace of the container with root privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.4%

CVSS Severity

CVSS v3 Score 6.8

CVSS v2 Score 6.9

References

Products affected by CVE-2020-3396

Cisco » 1100-4g Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:1100-4g_integrated_services_router:-
Cisco » 1100-4gltegb Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:1100-4gltegb_integrated_services_router:-
Cisco » 1100-4gltena Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:1100-4gltena_integrated_services_router:-
Cisco » 1100-6g Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:1100-6g_integrated_services_router:-
Cisco » 1100-Lte Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:1100-lte_integrated_services_router:-
Cisco » 1100 Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:1100_integrated_services_router:-
Cisco » 4321/k9-Rf Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:4321/k9-rf_integrated_services_router:-
Cisco » 4321/k9-Ws Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:4321/k9-ws_integrated_services_router:-
Cisco » 4321/k9 Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:4321/k9_integrated_services_router:-
Cisco » 4331/k9-Rf Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:4331/k9-rf_integrated_services_router:-
Cisco » 4331/k9-Ws Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:4331/k9-ws_integrated_services_router:-
Cisco » 4331/k9 Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:4331/k9_integrated_services_router:-
Cisco » 4351/k9-Rf Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:4351/k9-rf_integrated_services_router:-
Cisco » 4351/k9-Ws Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:4351/k9-ws_integrated_services_router:-
Cisco » 4351/k9 Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:4351/k9_integrated_services_router:-
Cisco » Asr 1000-X » Version: N/A

cpe:2.3:h:cisco:asr_1000-x:-
Cisco » Asr 1001-X » Version: N/A

cpe:2.3:h:cisco:asr_1001-x:-
Cisco » Asr 1001 » Version: N/A

cpe:2.3:h:cisco:asr_1001:-
Cisco » Asr 1002-X » Version: N/A

cpe:2.3:h:cisco:asr_1002-x:-
Cisco » Asr 1002 » Version: N/A

cpe:2.3:h:cisco:asr_1002:-
Cisco » Asr 1004 » Version: N/A

cpe:2.3:h:cisco:asr_1004:-
Cisco » Asr 1006 » Version: N/A

cpe:2.3:h:cisco:asr_1006:-
Cisco » Asr 1013 » Version: N/A

cpe:2.3:h:cisco:asr_1013:-
Cisco » Asr 1023 » Version: N/A

cpe:2.3:h:cisco:asr_1023:-
Cisco » Catalyst C9300-24p » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-24p:-
Cisco » Catalyst C9300-24s » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-24s:-
Cisco » Catalyst C9300-24t » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-24t:-
Cisco » Catalyst C9300-24u » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-24u:-
Cisco » Catalyst C9300-24ux » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-24ux:-
Cisco » Catalyst C9300-48p » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-48p:-
Cisco » Catalyst C9300-48s » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-48s:-
Cisco » Catalyst C9300-48t » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-48t:-
Cisco » Catalyst C9300-48u » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-48u:-
Cisco » Catalyst C9300-48un » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-48un:-
Cisco » Catalyst C9300-48uxm » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300-48uxm:-
Cisco » Catalyst C9300l-24p-4g » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300l-24p-4g:-
Cisco » Catalyst C9300l-24p-4x » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300l-24p-4x:-
Cisco » Catalyst C9300l-24t-4g » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300l-24t-4g:-
Cisco » Catalyst C9300l-24t-4x » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300l-24t-4x:-
Cisco » Catalyst C9300l-48p-4g » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300l-48p-4g:-
Cisco » Catalyst C9300l-48p-4x » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300l-48p-4x:-
Cisco » Catalyst C9300l-48t-4g » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300l-48t-4g:-
Cisco » Catalyst C9300l-48t-4x » Version: N/A

cpe:2.3:h:cisco:catalyst_c9300l-48t-4x:-
Cisco » Catalyst C9404r » Version: N/A

cpe:2.3:h:cisco:catalyst_c9404r:-
Cisco » Catalyst C9407r » Version: N/A

cpe:2.3:h:cisco:catalyst_c9407r:-
Cisco » Catalyst C9410r » Version: N/A

cpe:2.3:h:cisco:catalyst_c9410r:-
Cisco » Catalyst C9500-12q » Version: N/A

cpe:2.3:h:cisco:catalyst_c9500-12q:-
Cisco » Catalyst C9500-16x » Version: N/A

cpe:2.3:h:cisco:catalyst_c9500-16x:-
Cisco » Catalyst C9500-24q » Version: N/A

cpe:2.3:h:cisco:catalyst_c9500-24q:-
Cisco » Catalyst C9500-24y4c » Version: N/A

cpe:2.3:h:cisco:catalyst_c9500-24y4c:-
Cisco » Catalyst C9500-32c » Version: N/A

cpe:2.3:h:cisco:catalyst_c9500-32c:-
Cisco » Catalyst C9500-32qc » Version: N/A

cpe:2.3:h:cisco:catalyst_c9500-32qc:-
Cisco » Catalyst C9500-40x » Version: N/A

cpe:2.3:h:cisco:catalyst_c9500-40x:-
Cisco » Catalyst C9500-48y4c » Version: N/A

cpe:2.3:h:cisco:catalyst_c9500-48y4c:-
Cisco » Csr1000v » Version: N/A

cpe:2.3:h:cisco:csr1000v:-
Cisco » Ios Xe » Version: 16.12.1

cpe:2.3:o:cisco:ios_xe:16.12.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-3396

Products

Pricing

Contact Us