CVE-2021-34709

Cisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification Vulnerabilities

Severity Score

6.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code on the underlying operating system. For more information about these vulnerabilities, see the Details section of this advisory.

Múltiples vulnerabilidades en las comprobaciones de verificación de imágenes de los routers Cisco Network Convergence System (NCS) de la serie 540, sólo cuando se ejecutan imágenes de software Cisco IOS XR NCS540L, y el software Cisco IOS XR para los routers Cisco de la serie 8000 podrían permitir a un atacante local autenticado ejecutar código arbitrario en el sistema operativo subyacente. Para conseguir más información sobre estas vulnerabilidades, consulte la sección Details de este aviso

*Credits: N/A

CVSS Scores

Attack Vector

Local

Attack Complexity

High

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Attack Vector

Local

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2021-06-15 CVE Reserved
2021-09-09 CVE Published
2023-03-08 EPSS Updated
2024-09-16 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-347: Improper Verification of Cryptographic Signature

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-lnt-QN9mCzwn	2023-11-07

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	8101-32fh Search vendor "Cisco" for product "8101-32fh"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	8101-32h Search vendor "Cisco" for product "8101-32h"	*	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	8102-64h Search vendor "Cisco" for product "8102-64h"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	8201 Search vendor "Cisco" for product "8201"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	8201-32fh Search vendor "Cisco" for product "8201-32fh"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	8202 Search vendor "Cisco" for product "8202"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	8800 12-slot Search vendor "Cisco" for product "8800 12-slot"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	8800 18-slot Search vendor "Cisco" for product "8800 18-slot"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	8800 4-slot Search vendor "Cisco" for product "8800 4-slot"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	8800 8-slot Search vendor "Cisco" for product "8800 8-slot"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540-12z20g-sys-a Search vendor "Cisco" for product "N540-12z20g-sys-a"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540-12z20g-sys-d Search vendor "Cisco" for product "N540-12z20g-sys-d"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540-24z8q2c-m Search vendor "Cisco" for product "N540-24z8q2c-m"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540-24z8q2c-sys Search vendor "Cisco" for product "N540-24z8q2c-sys"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540-28z4c-sys-a Search vendor "Cisco" for product "N540-28z4c-sys-a"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540-28z4c-sys-d Search vendor "Cisco" for product "N540-28z4c-sys-d"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540-acc-sys Search vendor "Cisco" for product "N540-acc-sys"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540x-12z16g-sys-a Search vendor "Cisco" for product "N540x-12z16g-sys-a"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540x-12z16g-sys-d Search vendor "Cisco" for product "N540x-12z16g-sys-d"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540x-16z4g8q2c-a Search vendor "Cisco" for product "N540x-16z4g8q2c-a"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540x-16z4g8q2c-d Search vendor "Cisco" for product "N540x-16z4g8q2c-d"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	< 7.3.2 Search vendor "Cisco" for product "Ios Xr" and version " < 7.3.2"	-	Affected	in	Cisco Search vendor "Cisco"	N540x-acc-sys Search vendor "Cisco" for product "N540x-acc-sys"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540-12z20g-sys-a Search vendor "Cisco" for product "N540-12z20g-sys-a"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540-12z20g-sys-d Search vendor "Cisco" for product "N540-12z20g-sys-d"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540-24z8q2c-m Search vendor "Cisco" for product "N540-24z8q2c-m"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540-24z8q2c-sys Search vendor "Cisco" for product "N540-24z8q2c-sys"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540-28z4c-sys-a Search vendor "Cisco" for product "N540-28z4c-sys-a"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540-28z4c-sys-d Search vendor "Cisco" for product "N540-28z4c-sys-d"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540-acc-sys Search vendor "Cisco" for product "N540-acc-sys"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540x-12z16g-sys-a Search vendor "Cisco" for product "N540x-12z16g-sys-a"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540x-12z16g-sys-d Search vendor "Cisco" for product "N540x-12z16g-sys-d"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540x-16z4g8q2c-a Search vendor "Cisco" for product "N540x-16z4g8q2c-a"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540x-16z4g8q2c-d Search vendor "Cisco" for product "N540x-16z4g8q2c-d"	-	-	Safe
Cisco Search vendor "Cisco"	Ios Xr Search vendor "Cisco" for product "Ios Xr"	>= 7.4.0 < 7.4.1 Search vendor "Cisco" for product "Ios Xr" and version " >= 7.4.0 < 7.4.1"	-	Affected	in	Cisco Search vendor "Cisco"	N540x-acc-sys Search vendor "Cisco" for product "N540x-acc-sys"	-	-	Safe