CVE-2020-3513

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 (RSP3) installed (affected versions not specified)

Description: The issue is related to incorrect validations by boot scripts when specific ROM monitor (ROMMON) variables are set, allowing an authenticated, local attacker with high privileges to execute persistent code at bootup and break the chain of trust. An attacker could exploit this by copying a specific file to the local file system of an affected device and defining specific ROMMON variables, potentially allowing the attacker to run arbitrary code on the underlying operating system (OS) with root privileges. To exploit, an attacker would need to have access to the root shell on the device or have physical access to the device.

Recommendations: For Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 (RSP3) installed, update to a version that includes the software updates released by Cisco to address these vulnerabilities. At the moment, there is no information about a newer version that contains a fix for this vulnerability.