NVD - CVE-2020-3524

Vulnerability Change Records for CVE-2020-3524

Change History

Initial Analysis by NIST 10/08/2020 10:35:21 AM

Action	Type	Old Value	New Value
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ios_xe_rom_monitor::::::::* versions up to (excluding) 15.6\(18r\) OR cpe:2.3:h:cisco:asr-920-10sz-pd:-:::::::* cpe:2.3:h:cisco:asr-920-12cz-a:-:::::::* cpe:2.3:h:cisco:asr-920-12cz-d:-:::::::* cpe:2.3:h:cisco:asr-920-12sz-a:-:::::::* cpe:2.3:h:cisco:asr-920-12sz-d:-:::::::* cpe:2.3:h:cisco:asr-920-20sz-m:-:::::::* cpe:2.3:h:cisco:asr-920-24sz-im:-:::::::* cpe:2.3:h:cisco:asr-920-24sz-m:-:::::::* cpe:2.3:h:cisco:asr-920-24tz-m:-:::::::* cpe:2.3:h:cisco:asr-920-4sz-a:-:::::::* cpe:2.3:h:cisco:asr-920-4sz-d:-:::::::* cpe:2.3:h:cisco:asr_920u-12sz-im:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ios_xe_rom_monitor::::::::* versions up to (excluding) 16.2\(1r\) OR cpe:2.3:h:cisco:asr_1000-x:-:::::::* cpe:2.3:h:cisco:asr_1001:-:::::::* cpe:2.3:h:cisco:asr_1001-x:-:::::::* cpe:2.3:h:cisco:asr_1002:-:::::::* cpe:2.3:h:cisco:asr_1002-x:-:::::::* cpe:2.3:h:cisco:asr_1004:-:::::::* cpe:2.3:h:cisco:asr_1006:-:::::::* cpe:2.3:h:cisco:asr_1013:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ios_xe_rom_monitor::::::::* versions up to (excluding) 16.2\(1r\) OR cpe:2.3:h:cisco:isr_4221:-:::::::* cpe:2.3:h:cisco:isr_4331:-:::::::* cpe:2.3:h:cisco:isr_4431:-:::::::* cpe:2.3:h:cisco:isr_4461:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ios_xe_rom_monitor::::::::* versions up to (excluding) 16.4\(1r\)s OR cpe:2.3:h:cisco:cbr8:-:::::::*
Added	CVSS V2		NIST (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Added	CVSS V3.1		NIST AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Added	CWE		NIST CWE-862
Changed	Reference Type	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rommon-secboot-7JgVLVYC No Types Assigned	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rommon-secboot-7JgVLVYC Vendor Advisory