CVE-2021-1136

Name of the Vulnerable Software and Affected Versions Cisco Network Convergence System (NCS) 540 Series Routers versions running Cisco IOS XR NCS540L software images Cisco IOS XR Software for the Cisco 8000 Series Routers (affected versions not specified)

Description The issue is related to multiple vulnerabilities in Cisco IOS XR software that could allow an authenticated, local attacker to execute unsigned code during the boot process on an affected device. This is due to errors in cryptographic signature verification in the Grub bootloader. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For Cisco Network Convergence System (NCS) 540 Series Routers running Cisco IOS XR NCS540L software images, update to a version that includes the fix for these vulnerabilities. For Cisco IOS XR Software for the Cisco 8000 Series Routers, update to a version that includes the fix for these vulnerabilities. As a temporary workaround, consider restricting access to the boot process to minimize the risk of exploitation.