Headline
CVE-2023-20064: Cisco Security Advisory: Cisco IOS XR Software Bootloader Unauthenticated Information Disclosure Vulnerability
A vulnerability in the GRand Unified Bootloader (GRUB) for Cisco IOS XR Software could allow an unauthenticated attacker with physical access to the device to view sensitive files on the console using the GRUB bootloader command line. This vulnerability is due to the inclusion of unnecessary commands within the GRUB environment that allow sensitive files to be viewed. An attacker could exploit this vulnerability by being connected to the console port of the Cisco IOS XR device when the device is power-cycled. A successful exploit could allow the attacker to view sensitive files that could be used to conduct additional attacks against the device.
When considering software upgrades, customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page, to determine exposure and a complete upgrade solution.
In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.
Fixed Releases
At the time of publication, the release information in the following table(s) was accurate. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.
The left column lists the Cisco IOS XR hardware platform, and the right column indicates the first fixed release for the vulnerability that is described in this advisory.
Cisco IOS XR Platform
First Fixed Release of Cisco IOS XR Software
ASR 9000 Series Aggregation Services Routers (64-bit)
7.9.1
IOSXRWBD
7.9.1
IOS XRv 9000 Routers
7.9.1
NCS 540 and 560 Series Routers
7.6.1
NCS 1001, 1002, and 1004 Series Routers
7.9.1
NCS 5000 Series Routers
7.7.1
NCS 5500 and 5700 Series Routers
7.6.1
NCS 6000 Series Routers
None planned
The Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory.