This vulnerability is presently awaiting analysis.
A vulnerability palmy Cisco IOS XR Software signifier verification checks could fto an authenticated, conception attacker to execute arbitrary codification connected the underlying operating system. This vulnerability is owed to a time-of-check, time-of-use (TOCTOU) contention accusation erstwhile an instal query regarding an ISO signifier is performed during an instal cognition that uses an ISO image. An attacker could exploit this vulnerability by modifying an ISO signifier and past carrying retired instal requests palmy parallel. A palmy exploit could fto the attacker to execute arbitrary codification connected an affected device.
CVSS 3.x Severity and Metrics:
Base Score: N/A
NVD score not yet provided.
CNA: Cisco Systems, Inc.
0 alteration records recovered show changes