Vulnerabilities > Cisco > IOS XR > 6.0.2.01

DATE CVE VULNERABILITY TITLE RISK
2017-07-04 CVE-2017-6719 Improper Input Validation vulnerability in Cisco IOS XR 6.0.2/6.0.2.01
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands on the host operating system with root privileges, aka Command Injection.
local
low complexity
cisco CWE-20
6.7
2017-07-04 CVE-2017-6718 Improper Input Validation vulnerability in Cisco IOS XR 6.0.2/6.0.2.01
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges to the root level.
local
low complexity
cisco CWE-20
6.7