CVE-2020-3396 - OpenCVE

A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive (SSD) for Cisco IOS XE Software could allow an authenticated, physical attacker to remove the USB 3.0 SSD and modify sensitive areas of the file system, including the namespace container protections. The vulnerability occurs because the USB 3.0 SSD control data is not stored on the internal boot flash. An attacker could exploit this vulnerability by removing the USB 3.0 SSD, modifying or deleting files on the USB 3.0 SSD by using another device, and then reinserting the USB 3.0 SSD on the original device. A successful exploit could allow the attacker to remove container protections and perform file actions outside the namespace of the container with root privileges.

Attack Vector Physical

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:M/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Cisco	Asr 1001-x Catalyst C9300-48s 1100-4g Integrated Services Router Catalyst C9407r Catalyst C9300-24ux Catalyst C9300l-48t-4x 1100-4gltegb Integrated Services Router Catalyst C9300-24t Catalyst C9300-48uxm 1100-lte Integrated Services Router 4331\/k9-rf Integrated Services Router Ios Xe Catalyst C9500-24y4c Asr 1002-x Catalyst C9300-24u Catalyst C9300-48t Catalyst C9300-48un Catalyst C9300-24p Csr1000v Catalyst C9300l-24t-4x Catalyst C9500-32c Catalyst C9300-48u 4331\/k9 Integrated Services Router 4321\/k9 Integrated Services Router Asr 1004 Catalyst C9500-12q Asr 1002 1100-6g Integrated Services Router Catalyst C9300l-48p-4x 4351\/k9-rf Integrated Services Router 1100 Integrated Services Router 4321\/k9-rf Integrated Services Router Catalyst C9300-48p Catalyst C9300l-24p-4x 4351\/k9-ws Integrated Services Router Catalyst C9404r Catalyst C9500-32qc Catalyst C9300l-24t-4g 1100-4gltena Integrated Services Router Catalyst C9300l-48p-4g Catalyst C9300l-48t-4g Asr 1023 Catalyst C9500-48y4c Asr 1000-x 4351\/k9 Integrated Services Router 4321\/k9-ws Integrated Services Router Asr 1006 Catalyst C9410r Asr 1001 4331\/k9-ws Integrated Services Router Asr 1013 Catalyst C9500-24q Catalyst C9500-16x Catalyst C9300l-24p-4g Catalyst C9500-40x Catalyst C9300-24s

Configuration 1 [-]

AND

cpe:2.3:o:cisco:ios_xe:16.12.1:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-4gltegb_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-4gltena_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-lte_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4321\/k9-rf_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4321\/k9-ws_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4321\/k9_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4331\/k9-rf_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4331\/k9-ws_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4331\/k9_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4351\/k9-rf_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4351\/k9-ws_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4351\/k9_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:asr_1000-x:-:::::::*
	cpe:2.3:h:cisco:asr_1001:-:::::::*
	cpe:2.3:h:cisco:asr_1001-x:-:::::::*
	cpe:2.3:h:cisco:asr_1002:-:::::::*
	cpe:2.3:h:cisco:asr_1002-x:-:::::::*
	cpe:2.3:h:cisco:asr_1004:-:::::::*
	cpe:2.3:h:cisco:asr_1006:-:::::::*
	cpe:2.3:h:cisco:asr_1013:-:::::::*
	cpe:2.3:h:cisco:asr_1023:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-24p:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-24s:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-24t:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-24u:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-24ux:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-48p:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-48s:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-48t:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-48u:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-48un:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300-48uxm:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300l-24p-4g:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300l-24p-4x:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300l-24t-4g:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300l-24t-4x:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300l-48p-4g:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300l-48p-4x:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300l-48t-4g:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9300l-48t-4x:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9404r:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9407r:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9410r:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9500-12q:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9500-16x:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9500-24q:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9500-24y4c:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9500-32c:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9500-32qc:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9500-40x:-:::::::*
	cpe:2.3:h:cisco:catalyst_c9500-48y4c:-:::::::*
	cpe:2.3:h:cisco:csr1000v:-:::::::*