发布日期：2020-09-24
更新日期：2020-10-12

受影响系统：

Cisco 1000 Series Aggregation Services Routers
Cisco 4000 Series Integrated Services Routers
Cisco cBR-8 Converged Broadband Routers
Cisco ASR 920 Series Aggregation Services Routers

描述：

---

CVE(CAN) ID: CVE-2020-3524

Cisco IOS XE是美国思科（Cisco）公司的一套为其网络设备开发的操作系统。Cisco 4000 Series Integrated Services Routers、Cisco ASR 920 Series Aggregation Services Routers、Cisco ASR 1000 Series Aggregation Services Routers和 Cisco cBR-8 Converged Broadband Routers是思科的路由器产品。
Cisco IOS XE ROM Monitor (ROMMON) Software for Cisco 4000 Series Integrated Services Routers、Cisco ASR 920 Series Aggregation Services Routers、Cisco ASR 1000 Series Aggregation Services Routers和 Cisco cBR-8 Converged Broadband Routers 存在授权不当漏洞。该漏洞源于受影响的软件中存在调试配置选项。 未经身份认证的物理攻击者可以通过控制台连接到受影响的设备将设备强制为ROMMON模式，并使用该设备上的特定选项编写恶意模式利用该漏洞破坏信任链，并在受影响的设备上加载受损的软件映像。（受损的软件映像是未经Cisco数字签名的任意软件映像。）

<*来源：Cisco
  
  链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rommon-secboot-7JgVLV
*>

建议：

---

厂商补丁：

Cisco
-----
Cisco已经为此发布了一个安全公告（cisco-sa-rommon-secboot-7JgVLVYC）以及相应补丁:
cisco-sa-rommon-secboot-7JgVLVYC：Cisco IOS XE ROM Monitor Software Vulnerability
链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rommon-secboot-7JgVLV

浏览次数：1015
严重程度：0（网友投票）