Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-9015

Arista DCS-7050QX-32S-R 4.20.9M, DCS-7050CX3-32S-R 4.20.11M, and DCS-7280SRAM-48C6-R 4.22.0.1F devices (and possibly other products) allow attackers to bypass intended TACACS+ shell restrictions via a | character. NOTE: the vendor reports that this is a configuration issue relating to an overly permissive regular expression in the TACACS+ server permitted commands

Published

2020-02-20T22:15:12.177

Last Modified

2024-11-21T05:39:49.993

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: PARTIAL
  • Availability Impact: PARTIAL
Exploitability Score

10.0

Impact Score

6.4

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System arista dcs-7050qx-32s-r_firmware 4.20.9m Yes
Hardware arista dcs-7050qx-32s-r - No
Operating System arista dcs-7050cx3-32s-r_firmware 4.20.11m Yes
Hardware arista dcs-7050cx3-32s-r - No
Operating System arista dcs-7280sram-48c6-r_firmware 4.22.0.1f Yes
Hardware arista dcs-7280sram-48c6-r - No
References