A vulnerability in a diagnostic command for the Plug-and-Play (PnP) subsystem of Cisco IOS XE Software could allow an authenticated, local malicious user to elevate privileges to the level of an Administrator user (level 15) on an affected device. The vulnerability is due to insufficient protection of sensitive information. An attacker with low privileges could exploit this vulnerability by issuing the diagnostic CLI show pnp profile when a specific PnP listener is enabled on the device. A successful exploit could allow the malicious user to obtain a privileged authentication token. This token can be used to send crafted PnP messages and execute privileged commands on the targeted system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ios xe 3.6.3e |
||
cisco ios xe 3.6.4e |
||
cisco ios xe 3.6.5ae |
||
cisco ios xe 3.6.5be |
||
cisco ios xe 3.6.5e |
||
cisco ios xe 3.6.6e |
||
cisco ios xe 3.6.7ae |
||
cisco ios xe 3.6.7be |
||
cisco ios xe 3.6.7e |
||
cisco ios xe 3.6.8e |
||
cisco ios xe 3.6.9ae |
||
cisco ios xe 3.6.9e |
||
cisco ios xe 3.6.10e |
||
cisco ios xe 3.7.3e |
||
cisco ios xe 3.7.4e |
||
cisco ios xe 3.7.5e |
||
cisco ios xe 3.8.0e |
||
cisco ios xe 3.8.1e |
||
cisco ios xe 3.8.2e |
||
cisco ios xe 3.8.3e |
||
cisco ios xe 3.8.4e |
||
cisco ios xe 3.8.5ae |
||
cisco ios xe 3.8.5e |
||
cisco ios xe 3.8.6e |
||
cisco ios xe 3.8.7e |
||
cisco ios xe 3.8.8e |
||
cisco ios xe 3.8.9e |
||
cisco ios xe 3.8.10e |
||
cisco ios xe 3.9.0e |
||
cisco ios xe 3.9.1e |
||
cisco ios xe 3.9.2be |
||
cisco ios xe 3.9.2e |
||
cisco ios xe 3.10.0ce |
||
cisco ios xe 3.10.0e |
||
cisco ios xe 3.10.1ae |
||
cisco ios xe 3.10.1e |
||
cisco ios xe 3.10.1se |
||
cisco ios xe 3.10.2e |
||
cisco ios xe 3.10.3e |
||
cisco ios xe 3.11.0e |
||
cisco ios xe 3.11.1ae |
||
cisco ios xe 3.11.1e |
||
cisco ios xe 3.11.2ae |
||
cisco ios xe 3.11.2e |
||
cisco ios xe 3.13.8s |
||
cisco ios xe 3.13.9s |
||
cisco ios xe 3.13.10s |
||
cisco ios xe 3.16.0as |
||
cisco ios xe 3.16.0bs |
||
cisco ios xe 3.16.0cs |
||
cisco ios xe 3.16.0s |
||
cisco ios xe 3.16.1as |
||
cisco ios xe 3.16.1s |
||
cisco ios xe 3.16.2as |
||
cisco ios xe 3.16.2bs |
||
cisco ios xe 3.16.2s |
||
cisco ios xe 3.16.3as |
||
cisco ios xe 3.16.3s |
||
cisco ios xe 3.16.4as |
||
cisco ios xe 3.16.4bs |
||
cisco ios xe 3.16.4cs |
||
cisco ios xe 3.16.4ds |
||
cisco ios xe 3.16.4es |
||
cisco ios xe 3.16.4gs |
||
cisco ios xe 3.16.4s |
||
cisco ios xe 3.16.5as |
||
cisco ios xe 3.16.5bs |
||
cisco ios xe 3.16.5s |
||
cisco ios xe 3.16.6bs |
||
cisco ios xe 3.16.6s |
||
cisco ios xe 3.16.7as |
||
cisco ios xe 3.16.7bs |
||
cisco ios xe 3.16.7s |
||
cisco ios xe 3.16.8s |
||
cisco ios xe 3.16.9s |
||
cisco ios xe 3.16.10as |
||
cisco ios xe 3.16.10s |
||
cisco ios xe 3.17.0s |
||
cisco ios xe 3.17.1as |
||
cisco ios xe 3.17.1s |
||
cisco ios xe 3.17.2s |
||
cisco ios xe 3.17.3s |
||
cisco ios xe 3.17.4s |
||
cisco ios xe 3.18.0as |
||
cisco ios xe 3.18.0s |
||
cisco ios xe 3.18.0sp |
||
cisco ios xe 3.18.1asp |
||
cisco ios xe 3.18.1bsp |
||
cisco ios xe 3.18.1csp |
||
cisco ios xe 3.18.1gsp |
||
cisco ios xe 3.18.1hsp |
||
cisco ios xe 3.18.1isp |
||
cisco ios xe 3.18.1s |
||
cisco ios xe 3.18.1sp |
||
cisco ios xe 3.18.2asp |
||
cisco ios xe 3.18.2s |
||
cisco ios xe 3.18.2sp |
||
cisco ios xe 3.18.3asp |
||
cisco ios xe 3.18.3bsp |
||
cisco ios xe 3.18.3s |
||
cisco ios xe 3.18.3sp |
||
cisco ios xe 3.18.4s |
||
cisco ios xe 3.18.4sp |
||
cisco ios xe 3.18.5sp |
||
cisco ios xe 3.18.6sp |
||
cisco ios xe 3.18.7sp |
||
cisco ios xe 3.18.8asp |
||
cisco ios xe 3.18.8sp |
||
cisco ios xe 16.1.1 |
||
cisco ios xe 16.1.2 |
||
cisco ios xe 16.1.3 |
||
cisco ios xe 16.2.1 |
||
cisco ios xe 16.2.2 |
||
cisco ios xe 16.3.1 |
||
cisco ios xe 16.3.1a |
||
cisco ios xe 16.3.2 |
||
cisco ios xe 16.3.3 |
||
cisco ios xe 16.3.4 |
||
cisco ios xe 16.3.5 |
||
cisco ios xe 16.3.5b |
||
cisco ios xe 16.3.6 |
||
cisco ios xe 16.3.7 |
||
cisco ios xe 16.3.8 |
||
cisco ios xe 16.3.9 |
||
cisco ios xe 16.3.10 |
||
cisco ios xe 16.3.11 |
||
cisco ios xe 16.4.1 |
||
cisco ios xe 16.4.2 |
||
cisco ios xe 16.4.3 |
||
cisco ios xe 16.5.1 |
||
cisco ios xe 16.5.1a |
||
cisco ios xe 16.5.1b |
||
cisco ios xe 16.5.2 |
||
cisco ios xe 16.5.3 |
||
cisco ios xe 16.6.1 |
||
cisco ios xe 16.6.2 |
||
cisco ios xe 16.6.3 |
||
cisco ios xe 16.6.4 |
||
cisco ios xe 16.6.4a |
||
cisco ios xe 16.6.4s |
||
cisco ios xe 16.6.5 |
||
cisco ios xe 16.6.5a |
||
cisco ios xe 16.6.5b |
||
cisco ios xe 16.6.6 |
||
cisco ios xe 16.6.7 |
||
cisco ios xe 16.6.7a |
||
cisco ios xe 16.6.8 |
||
cisco ios xe 16.7.1 |
||
cisco ios xe 16.7.1a |
||
cisco ios xe 16.7.1b |
||
cisco ios xe 16.7.2 |
||
cisco ios xe 16.7.3 |
||
cisco ios xe 16.7.4 |
||
cisco ios xe 16.8.1 |
||
cisco ios xe 16.8.1a |
||
cisco ios xe 16.8.1b |
||
cisco ios xe 16.8.1c |
||
cisco ios xe 16.8.1d |
||
cisco ios xe 16.8.1e |
||
cisco ios xe 16.8.1s |
||
cisco ios xe 16.8.2 |
||
cisco ios xe 16.8.3 |
||
cisco ios xe 16.9.1 |
||
cisco ios xe 16.9.1a |
||
cisco ios xe 16.9.1b |
||
cisco ios xe 16.9.1c |
||
cisco ios xe 16.9.1d |
||
cisco ios xe 16.9.1s |
||
cisco ios xe 16.9.2 |
||
cisco ios xe 16.9.2a |
||
cisco ios xe 16.9.2s |
||
cisco ios xe 16.9.3 |
||
cisco ios xe 16.9.3a |
||
cisco ios xe 16.9.3h |
||
cisco ios xe 16.9.3s |
||
cisco ios xe 16.9.4 |
||
cisco ios xe 16.9.4c |
||
cisco ios xe 16.9.5 |
||
cisco ios xe 16.9.5f |
||
cisco ios xe 16.9.6 |
||
cisco ios xe 16.10.1 |
||
cisco ios xe 16.10.1a |
||
cisco ios xe 16.10.1b |
||
cisco ios xe 16.10.1c |
||
cisco ios xe 16.10.1d |
||
cisco ios xe 16.10.1e |
||
cisco ios xe 16.10.1f |
||
cisco ios xe 16.10.1g |
||
cisco ios xe 16.10.1s |
||
cisco ios xe 16.10.2 |
||
cisco ios xe 16.10.3 |
||
cisco ios xe 16.11.1 |
||
cisco ios xe 16.11.1a |
||
cisco ios xe 16.11.1b |
||
cisco ios xe 16.11.1c |
||
cisco ios xe 16.11.1s |
||
cisco ios xe 16.11.2 |
||
cisco ios xe 16.12.1 |
||
cisco ios xe 16.12.1a |
||
cisco ios xe 16.12.1c |
||
cisco ios xe 16.12.1s |
||
cisco ios xe 16.12.1t |
||
cisco ios xe 16.12.1w |
||
cisco ios xe 16.12.1x |
||
cisco ios xe 16.12.1y |
||
cisco ios xe 16.12.1z |
||
cisco ios xe 16.12.2 |
||
cisco ios xe 16.12.2a |
||
cisco ios xe 16.12.2s |
||
cisco ios xe 16.12.2t |
||
cisco ios xe 16.12.3 |
||
cisco ios xe 16.12.3a |
||
cisco ios xe 16.12.3s |
||
cisco ios xe 16.12.4 |
||
cisco ios xe 16.12.4a |
||
cisco ios xe 17.1.1 |
||
cisco ios xe 17.1.1a |
||
cisco ios xe 17.1.1s |
||
cisco ios xe 17.1.1t |
||
cisco ios xe 17.1.2 |
||
cisco ios xe 17.2.1 |
||
cisco ios xe 17.2.1a |
||
cisco ios xe 17.2.1r |
||
cisco ios xe 17.2.1v |