CVE-2019-12709

CVE Database · CVE-2019-12709

CVE-2019-12709

· MEDIUMModified

CVSS v3.1

6.7

EPSS

0.46%

Published

Sep 25, 2019

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in a CLI command related to the virtualization manager (VMAN) in Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with root privileges. The vulnerability is due to insufficient validation of arguments passed to a specific VMAN CLI command on an affected device. An attacker who has valid administrator access to an affected device could exploit this vulnerability by including malicious input as the argument of an affected command. A successful exploit could allow the attacker to run arbitrary commands on the underlying operating system with root privileges, which may lead to complete system compromise.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-78CWE-78

Affected Products (12)

cisco · ios_xr (up to 6.5.3)vulnerable

cisco · ios_xr (up to 6.6.2)vulnerable

cisco · asr_9000v

cisco · asr_9001

cisco · asr_9006

cisco · asr_9010

cisco · asr_9901

cisco · asr_9904

cisco · asr_9906

cisco · asr_9910

cisco · asr_9912

cisco · asr_9922

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-xr-asr9k-privesc

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-xr-asr9k-privesc

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs