A vulnerability in the Cisco Application Framework component of the Cisco IOx application environment could allow an authenticated, local attacker to overwrite arbitrary files in the virtual instance that is running on the affected device. The vulnerability is due to insufficient path restriction enforcement. An attacker could exploit this vulnerability by including a crafted file in an application package. An exploit could allow the attacker to overwrite files.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2020-06-03T17:55:59.024823Z
Updated: 2024-09-16T23:02:01.118Z
Reserved: 2019-12-12T00:00:00
Link: CVE-2020-3237
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-06-03T18:15:21.573
Modified: 2020-06-08T19:34:29.957
Link: CVE-2020-3237
Redhat
No data.