Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to gain unauthorized read access to sensitive data or cause the web management software to hang or crash, resulting in a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.
References
Link | Resource |
---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-webui-multi-vfTkk7yr | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-09-24 11:15
Updated : 2021-10-07 13:11
NVD link : CVE-2020-3474
Mitre link : CVE-2020-3474
JSON object : View
CWE
CWE-863
Incorrect Authorization
Products Affected
cisco
- catalyst_c9300l-48p-4x
- catalyst_c9300-48p
- catalyst_c9300l-24t-4g
- ws-c3650-24ps
- asr_1001-hx
- catalyst_c9200-48t
- ws-c3650-12x48uz
- catalyst_c9500-48y4c
- catalyst_c9200l-48t-4x
- asr_1006
- catalyst_c9300-24t
- ws-c3650-24pdm
- ws-c3850-48t
- catalyst_c9300l-48p-4g
- ws-c3650-24td
- ws-c3650-48ps
- catalyst_c9300-48s
- catalyst_c9300-24p
- catalyst_c9500-24q
- catalyst_c9300l-24t-4x
- asr_1001-x
- isr_1101
- catalyst_c9200l-24pxg-4x
- catalyst_9800-80
- catalyst_9800-l-f
- catalyst_c9200l-24p-4g
- ws-c3850-48f
- catalyst_c9500-32qc
- catalyst_c9500-32c
- catalyst_c9500-24y4c
- catalyst_c9200l-48p-4x
- ws-c3850-48u
- catalyst_c9200l-24t-4g
- ws-c3650-48fqm
- catalyst_c9200-24t
- catalyst_9800-cl
- catalyst_c9200l-48pxg-2y
- catalyst_c9300-48uxm
- catalyst_c9300-24ux
- catalyst_9800-l
- ws-c3650-48fd
- catalyst_9800-l-c
- catalyst_c9300l-24p-4g
- catalyst_c9200-24p
- catalyst_9800-40
- catalyst_c9300-48u
- catalyst_c9200l-24t-4x
- catalyst_c9300-48t
- isr_111x
- ws-c3850-12xs
- asr_1002-x
- catalyst_c9300-24u
- catalyst_c9300-48un
- ws-c3850-24u
- catalyst_c9500-40x
- catalyst_c9300l-48t-4g
- ws-c3850-48xs
- ws-c3650-24ts
- asr_1006-x
- catalyst_c9200l-24p-4x
- catalyst_c9300-24s
- catalyst_c9200l-48t-4g
- ws-c3650-48td
- ws-c3650-12x48uq
- asr_1013
- ws-c3850-24p
- isr_1100
- catalyst_c9500-16x
- ws-c3650-48tq
- ws-c3650-24pd
- ws-c3850-48p
- catalyst_c9200l-24pxg-2y
- ws-c3850
- asr_1009-x
- ws-c3650-48fq
- isr_1109
- ws-c3650-12x48ur
- asr_1002-hx
- isr_1111x
- ws-c3850-24xu
- ws-c3850-12x48u
- ws-c3650-48pq
- 1100_integrated_services_router
- ios_xe
- ws-c3850-12s
- catalyst_c9300l-48t-4x
- ws-c3650-8x24uq
- ws-c3650-48ts
- asr_1004
- ws-c3850-24s
- ws-c3650-48pd
- isr_1160
- isr_1120
- ws-c3850-24xs
- ws-c3850-24t
- catalyst_c9300l-24p-4x
- catalyst_c9200-48p
- catalyst_c9500-12q
- ws-c3650-48fs
- catalyst_c9200l-48pxg-4x
- catalyst_c9200l-48p-4g