Unrated severityNVD Advisory· Published Jun 3, 2020· Updated Nov 15, 2024
Cisco IOS XE Software Privilege Escalation Vulnerability
CVE-2020-3215
Description
A vulnerability in the Virtual Services Container of Cisco IOS XE Software could allow an authenticated, local attacker to gain root-level privileges on an affected device. The vulnerability is due to insufficient validation of a user-supplied open virtual appliance (OVA). An attacker could exploit this vulnerability by installing a malicious OVA on an affected device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: n/a
Patches
Vulnerability mechanics
References
1- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-priv-esc1-OKMKFRhVmitrevendor-advisoryx_refsource_CISCO
News mentions
0No linked articles in our index yet.