Preview Tool

Cisco Bug: CSCuq24202 - Cisco IOS TCL script interpreter privilege escalation vulnerability

Last Modified

Nov 27, 2020

Products (2)

  • Cisco 2600 Series Multiservice Platforms
  • Cisco 2600 Series Multiservice Platforms

Known Affected Releases


Description (partial)

A vulnerability in the TCL script interpreter of Cisco IOS Software
could allow an authenticated, local attacker to escalate its privileges
from those of a non-privileged user to a privileged (level 15) user.
This would allow a non-privileged user to execute privileged commands
(those under privilege level 15).

The vulnerability is due to an error on resetting VTY privileges after
running a TCL script. An attacker could exploit this vulnerability by
establishing a session to an affected device immediately after a TCL
script has been run. An attacker would need to provide valid credentials
and successfully pass authentication to the device.

This behavior is timing dependent, as the attacker would need to log-in
to the device immediately after the TCL script finishes execution.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.