Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to elevate privileges to the level of an Administrator user on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
References
| Link | Resource |
|---|---|
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-webui-priv-esc-K8zvEWM | Vendor Advisory |
Advertisement
Configurations
Configuration 1 (hide)
| AND |
|
Information
Published : 2020-09-24 11:15
Updated : 2022-03-18 12:41
NVD link : CVE-2020-3425
Mitre link : CVE-2020-3425
JSON object : View
CWE
Advertisement
Products Affected
cisco
- catalyst_c9300l-48p-4x
- catalyst_c9300-48p
- catalyst_c9300l-24t-4g
- ws-c3650-24ps
- asr_1001-hx
- catalyst_c9200-48t
- 4321_integrated_services_router
- 4431_integrated_services_router
- ws-c3650-12x48uz
- catalyst_c9500-48y4c
- catalyst_c9200l-48t-4x
- asr_1006
- ws-c3860
- catalyst_c9300-24t
- ws-c3650-24pdm
- ws-c3850-48t
- catalyst_c9300l-48p-4g
- ws-c3650-24td
- ws-c3650-48ps
- catalyst_c9300-48s
- catalyst_c9300-24p
- catalyst_c9500-24q
- catalyst_c9300l-24t-4x
- isr_1101
- catalyst_c9200l-24pxg-4x
- catalyst_9800-80
- catalyst_9800-l-f
- catalyst_c9200l-24p-4g
- ws-c3850-48f
- catalyst_c9500-32qc
- catalyst_c9500-32c
- catalyst_c9500-24y4c
- catalyst_c9200l-48p-4x
- ws-c3850-48u
- catalyst_c9200l-24t-4g
- ws-c3650-48fqm
- 4351_integrated_services_router
- catalyst_c9200-24t
- catalyst_9800-cl
- catalyst_c9200l-48pxg-2y
- catalyst_c9300-48uxm
- catalyst_c9300-24ux
- catalyst_9800-l
- ws-c3650-48fd
- catalyst_9800-l-c
- catalyst_c9300l-24p-4g
- catalyst_9800-40
- catalyst_c9200-24p
- catalyst_c9300-48u
- catalyst_c9200l-24t-4x
- catalyst_c9300-48t
- isr_111x
- ws-c3850-12xs
- asr_1002-x
- catalyst_c9300-24u
- catalyst_c9300-48un
- ws-c3850-24u
- catalyst_c9500-40x
- catalyst_c9300l-48t-4g
- 4331_integrated_services_router
- ws-c3850-48xs
- ws-c3650-24ts
- asr_1006-x
- catalyst_c9200l-24p-4x
- catalyst_c9300-24s
- catalyst_c9200l-48t-4g
- ws-c3650-48td
- ws-c3650-12x48uq
- 4451-x_integrated_services_router
- asr_1013
- ws-c3850-24p
- isr_1100
- catalyst_c9500-16x
- ws-c3650-48tq
- ws-c3650-24pd
- ws-c3850-48p
- catalyst_c9200l-24pxg-2y
- 4461_integrated_services_router
- ws-c3850
- integrated_services_virtual_router
- asr_1009-x
- ws-c3650-48fq
- isr_1109
- ws-c3650-12x48ur
- asr_1002-hx
- isr_1111x
- 4221_integrated_services_router
- ws-c3850-24xu
- ws-c3850-12x48u
- ws-c3650-48pq
- ios_xe
- ws-c3850-12s
- catalyst_c9300l-48t-4x
- ws-c3650-8x24uq
- ws-c3650-48ts
- asr_1004
- ws-c3850-24s
- ws-c3650-48pd
- isr_1160
- isr_1120
- ws-c3850-24xs
- cloud_services_router_1000v
- ws-c3650-48fs
- ws-c3850-24t
- catalyst_c9300l-24p-4x
- catalyst_c9200-48p
- catalyst_c9500-12q
- asr_1001-x
- catalyst_c9200l-48pxg-4x
- catalyst_c9200l-48p-4g