Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-3477

A vulnerability in the CLI parser of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker to access files from the flash: filesystem. The vulnerability is due to insufficient application of restrictions during the execution of a specific command. An attacker could exploit this vulnerability by using a specific command at the command line. A successful exploit could allow the attacker to obtain read-only access to files that are located on the flash: filesystem that otherwise might not have been accessible.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.5%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 2.1
Products affected by CVE-2020-3477
  • Cisco » 2610xm » Version: N/A
    cpe:2.3:h:cisco:2610xm:-
  • Cisco » 2611xm » Version: N/A
    cpe:2.3:h:cisco:2611xm:-
  • Cisco » 2612 » Version: N/A
    cpe:2.3:h:cisco:2612:-
  • Cisco » 2620xm » Version: N/A
    cpe:2.3:h:cisco:2620xm:-
  • Cisco » 2621xm » Version: N/A
    cpe:2.3:h:cisco:2621xm:-
  • Cisco » 2650xm » Version: N/A
    cpe:2.3:h:cisco:2650xm:-
  • Cisco » 2651xm » Version: N/A
    cpe:2.3:h:cisco:2651xm:-
  • Cisco » 2691 » Version: N/A
    cpe:2.3:h:cisco:2691:-
  • Cisco » Ios » Version: 16.3.11
    cpe:2.3:o:cisco:ios:16.3.11


Products
Pricing
Contact Us

Shodan ® - All rights reserved