Cisco IOS XR Software Privilege Escalation Vulnerability via CLI Command

A vulnerability exists in Cisco IOS XR Software CLI task group assignments, allowing authenticated, local attackers to elevate privileges and gain full administrative control on affected devices. This issue stems from incorrect command mapping in the source code, enabling low-privileged users to bypass task group checks. Exploitation could lead to unauthorized actions on the device.

Impact

Successful exploitation allows an authenticated, local attacker to bypass task group checks, elevate privileges, and execute commands with full administrative rights on the affected device.

Remediation

Cisco has released software updates to address this vulnerability. For devices with TACACS+ authentication and authorization configured, administrators can use this feature to control command access for non-administrative users. Customers should evaluate the applicability of this workaround in their environment.