A vulnerability in motherboard console ports of line cards for Cisconbsp;ASR 1000 Series Aggregation Services Routers and Cisconbsp;cBR-8 Converged Broadband Routers could allow an unauthenticated, physical attacker to access an affected device’s operating system.
The vulnerability exists because an engineering console port is available on the motherboard of the affected line cards.

An attacker could exploit this vulnerability by physically connecting to the console port on the line card.

A successful exploit could allow the attacker to gain full access to the affected device’s operating system.
Cisco has released software updates that address this vulnerability.

There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-cc
This advisory is part of the September 27, 2017, release of the Cisconbsp;IOS and IOSnbsp;XE Software Security Advisory Bundled Publication, which includes 12 Cisco Security Advisories that describe 13 vulnerabilities.

For a complete list of the advisories and links to them, see Cisco Event Response: September 2017 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication.

Security Impact Rating: High

CVE: CVE-2017-12239

Leave a Reply