Vulnerabilities > Cisco > IOS XR > 7.1.15

DATE CVE VULNERABILITY TITLE RISK
2020-09-04 CVE-2020-3473 Incorrect Authorization vulnerability in Cisco IOS XR
A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local CLI shell user to elevate privileges and gain full administrative control of the device.
local
low complexity
cisco CWE-863
7.8
2020-06-18 CVE-2020-3364 Incorrect Authorization vulnerability in Cisco IOS XR
A vulnerability in the access control list (ACL) functionality of the standby route processor management interface of Cisco IOS XR Software could allow an unauthenticated, remote attacker to reach the configured IP addresses on the standby route processor management Gigabit Ethernet Management interface.
network
low complexity
cisco CWE-863
5.3