{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T01:35:36.739","vulnerabilities":[{"cve":{"id":"CVE-2020-3207","sourceIdentifier":"psirt@cisco.com","published":"2020-06-03T18:15:18.747","lastModified":"2024-11-21T05:30:33.603","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in the processing of boot options of specific Cisco IOS XE Software switches could allow an authenticated, local attacker with root shell access to the underlying operating system (OS) to conduct a command injection attack during device boot. This vulnerability is due to insufficient input validation checks while processing boot options. An attacker could exploit this vulnerability by modifying device boot options to execute attacker-provided code. A successful exploit may allow an attacker to bypass the Secure Boot process and execute malicious code on an affected device with root-level privileges."},{"lang":"es","value":"Una vulnerabilidad en el procesamiento de las opciones de arranque de los switches específicos de Cisco IOS XE Software, podría permitir a un atacante local autenticado con acceso de shell root al sistema operativo (SO) subyacente llevar a cabo un ataque de inyección de comando durante el arranque del dispositivo. Esta vulnerabilidad se debe a comprobaciones de entrada insuficientes al procesar las opciones de arranque. Un atacante podría explotar esta vulnerabilidad al modificar las opciones de arranque del dispositivo para ejecutar el código proporcionado por el atacante. Una explotación con éxito puede permitir a un atacante omitir el proceso de arranque seguro y ejecutar código malicioso sobre un dispositivo afectado con privilegios de nivel root."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.7,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.8,"impactScore":5.9}],"cvssMetricV30":[{"source":"psirt@cisco.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.7,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:C/I:C/A:C","baseScore":7.2,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":3.9,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-77"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.2:*:*:*:*:*:*:*","matchCriteriaId":"F29CEE37-4044-4A3C-9685-C9C021FD346A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.2a:*:*:*:*:*:*:*","matchCriteriaId":"3DC5BB06-100F-42C9-8CEB-CC47FD26DDF3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.2s:*:*:*:*:*:*:*","matchCriteriaId":"5292764A-7D1C-4E04-86EF-809CB68EDD25"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.3:*:*:*:*:*:*:*","matchCriteriaId":"E1FDA817-3A50-4B9E-8F4E-F613BDB3E9EE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.3a:*:*:*:*:*:*:*","matchCriteriaId":"1E16D266-108F-4F8A-998D-F1CA25F2EAAD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.3h:*:*:*:*:*:*:*","matchCriteriaId":"F84AE35F-D016-4B8F-8FE2-C2ACB200DFED"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.3s:*:*:*:*:*:*:*","matchCriteriaId":"41D55481-C80E-4400-9C3D-9F6B1F7F13CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.4:*:*:*:*:*:*:*","matchCriteriaId":"E4BF9829-F80E-4837-A420-39B291C4E17B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1:*:*:*:*:*:*:*","matchCriteriaId":"DB6BD18B-B9BD-452F-986E-16A6668E46B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1e:*:*:*:*:*:*:*","matchCriteriaId":"ADED0D82-2A4D-4235-BFAC-5EE2D862B652"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1s:*:*:*:*:*:*:*","matchCriteriaId":"763664F5-E6CD-4936-B2F8-C5E2D5EA7BB6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1:*:*:*:*:*:*:*","matchCriteriaId":"E91F8704-6DAD-474A-84EA-04E4AF7BB9B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1a:*:*:*:*:*:*:*","matchCriteriaId":"314C7763-A64D-4023-9F3F-9A821AE4151F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1b:*:*:*:*:*:*:*","matchCriteriaId":"5820D71D-FC93-45AA-BC58-A26A1A39C936"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1c:*:*:*:*:*:*:*","matchCriteriaId":"FC1C85DD-69CC-4AA8-B219-651D57FC3506"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1s:*:*:*:*:*:*:*","matchCriteriaId":"DB26AE0F-85D8-4EAB-B9BD-457DD81FF0FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1:*:*:*:*:*:*:*","matchCriteriaId":"C98DED36-D4B5-48D6-964E-EEEE97936700"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1c:*:*:*:*:*:*:*","matchCriteriaId":"C8BEFEDA-B01A-480B-B03D-7ED5D08E4B67"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1s:*:*:*:*:*:*:*","matchCriteriaId":"9027A528-2588-4C06-810B-5BB313FE4323"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3650-12x48uq:-:*:*:*:*:*:*:*","matchCriteriaId":"7434059A-25B8-4FAC-A756-6E571348B76E"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3650-12x48ur:-:*:*:*:*:*:*:*","matchCriteriaId":"858FEECF-CC69-4E68-8E8A-674643021964"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3650-12x48uz:-:*:*:*:*:*:*:*","matchCriteriaId":"91B9F022-4C3D-493E-9418-E9CDDAFEC9B1"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3650-24pd:-:*:*:*:*:*:*:*","matchCriteriaId":"8904EAF5-25E7-4A6B-8117-1859F913B83B"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3650-24pdm:-:*:*:*:*:*:*:*","matchCriteriaId":"59A990D6-B748-4AFD-B924-1D19680BD3DB"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3650-48fq:-:*:*:*:*:*:*:*","matchCriteriaId":"426B68A6-3A41-43DB-846F-AEFBA62E221B"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3650-48fqm:-:*:*:*:*:*:*:*","matchCriteriaId":"9C96215F-A300-4B4E-9D3A-C32E484BFC5B"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3650-8x24uq:-:*:*:*:*:*:*:*","matchCriteriaId":"991CBDFB-6836-4D1F-80A9-14EBCE3F855F"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3850-24xs:-:*:*:*:*:*:*:*","matchCriteriaId":"295C46B4-5E9F-4DD8-861B-00BA43923306"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3850-48xs:-:*:*:*:*:*:*:*","matchCriteriaId":"F8E9B149-AA2B-4421-8CC3-5A4B32B7AADF"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3850-nm-2-40g:-:*:*:*:*:*:*:*","matchCriteriaId":"35490BDE-DF21-495E-9F8A-7631FCB32A1F"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_3850-nm-8-10g:-:*:*:*:*:*:*:*","matchCriteriaId":"20EFB5B8-4A38-48C5-A363-3C7F7763C1D5"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200-24p:-:*:*:*:*:*:*:*","matchCriteriaId":"18736C74-F68F-4D0B-AE2B-4BC1834EF794"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200-24t:-:*:*:*:*:*:*:*","matchCriteriaId":"D223C2AB-22A4-42B5-8BBB-78E2CBF23B40"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200-48p:-:*:*:*:*:*:*:*","matchCriteriaId":"BDD3EAA2-8F25-4099-B76F-5ACC3BE34610"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200-48t:-:*:*:*:*:*:*:*","matchCriteriaId":"AE9BD57F-BDAC-46DD-AF87-8914B29670F2"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24p-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"AFCEBFFC-DD60-4CB1-A7F2-9AC09977BA4F"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24p-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"B9F7B21F-1DAA-45C7-8C24-D3A19F1C5459"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24pxg-2y:-:*:*:*:*:*:*:*","matchCriteriaId":"1C4F9918-E075-4F78-AFD7-0BB7FA97C1F6"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24pxg-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"C7E00A0B-A58E-472F-B107-0FE106751F2D"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24t-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"BCB45406-5216-4A11-B8D3-C44639DC26B0"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24t-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"215D01AE-3767-482A-85C5-3361506F0AC3"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48p-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"A06E37A8-166F-4534-9089-D20B1227F4DD"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48p-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"B9D6DAE3-BAD0-46D8-B899-45B955F532F7"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48pxg-2y:-:*:*:*:*:*:*:*","matchCriteriaId":"327167E8-4B65-4F9D-8760-34CDA03887CA"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48pxg-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"A0DA2253-C6A9-4749-B313-6552628A96F3"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48t-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"C925086A-94B9-4FE0-9FEB-3242C1217453"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48t-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"6EB14B34-4035-41D2-834B-7FB069264207"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-24p:-:*:*:*:*:*:*:*","matchCriteriaId":"F257D2BE-7618-4B6A-AFCE-6D9D0084FA1D"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-24s:-:*:*:*:*:*:*:*","matchCriteriaId":"8BA927CE-9D8E-4BC0-9EA6-641E7C4F71B3"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-24t:-:*:*:*:*:*:*:*","matchCriteriaId":"9A46D298-1685-410E-879C-2EBC45C185AC"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-24u:-:*:*:*:*:*:*:*","matchCriteriaId":"CA4ACF54-E576-4D8A-A4E6-17A37EEC53DA"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-24ux:-:*:*:*:*:*:*:*","matchCriteriaId":"196A7C06-8371-479D-973D-591DEB181739"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-48p:-:*:*:*:*:*:*:*","matchCriteriaId":"EE42511E-9883-4779-A8E5-FC3E16EF2793"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-48s:-:*:*:*:*:*:*:*","matchCriteriaId":"DB06AD21-91A7-46B8-8F44-683828A5422D"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-48t:-:*:*:*:*:*:*:*","matchCriteriaId":"5DA169AF-3743-4051-B63B-FF6E1ADCD886"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-48u:-:*:*:*:*:*:*:*","matchCriteriaId":"7D13CF5B-4482-4C7D-8D6A-E220F3E4F868"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-48un:-:*:*:*:*:*:*:*","matchCriteriaId":"92134C0A-4E5B-43EF-8439-484DF504C43C"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300-48uxm:-:*:*:*:*:*:*:*","matchCriteriaId":"26ECF9BD-F632-4A02-8993-C0D44B91289C"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300l-24p-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"48730DB5-94AF-4BE7-8047-52B8B47CE35A"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300l-24p-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"E3A88142-3284-4C25-8774-36004B5F9087"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300l-24t-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"8EB76311-4B6D-4897-A683-4244E92BD570"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300l-24t-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"CDDA2975-CDB7-4182-A03E-D34F15CDF6F1"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300l-48p-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"35B9D0B5-4BE1-490E-9A68-00A3D357BC3D"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300l-48p-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"71FA2F5A-6146-4142-96A8-552118E4BB67"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300l-48t-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"BEF786D6-F28F-49D8-A15C-BFD0AA934355"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9300l-48t-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"CA32B0AC-1B0A-4ED8-8532-9C7BE6E059D4"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9500-12q:-:*:*:*:*:*:*:*","matchCriteriaId":"6BFEE45F-C5AC-483D-9DE6-4CEB98D80A0C"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9500-16x:-:*:*:*:*:*:*:*","matchCriteriaId":"FD6F5BBC-4627-4A3E-B827-3CEE7EE969D0"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9500-24q:-:*:*:*:*:*:*:*","matchCriteriaId":"8B2E41E2-00CE-42C4-8C91-9307D76F5D7A"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9500-24y4c:-:*:*:*:*:*:*:*","matchCriteriaId":"98CB2D23-B5F8-4FA9-8431-3B0124CE2140"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9500-32c:-:*:*:*:*:*:*:*","matchCriteriaId":"E8A8BA9F-3361-43CD-8031-A5DF0AD68BEB"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9500-32qc:-:*:*:*:*:*:*:*","matchCriteriaId":"6DFE4BB6-FC9A-42B3-B8A0-2610D71BB9B8"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9500-40x:-:*:*:*:*:*:*:*","matchCriteriaId":"53D13F1D-345D-45D5-9000-DAFE8A85D71B"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9500-48y4c:-:*:*:*:*:*:*:*","matchCriteriaId":"8CFB064E-E390-47B5-AA76-5D3D2E368055"}]}]}],"references":[{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ngwc-cmdinj-KEwWVWR","source":"psirt@cisco.com","tags":["Vendor Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ngwc-cmdinj-KEwWVWR","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}