Cisco Security Advisory - Broadcom MediaxChange Vulnerability Affecting Cisco Products: July 2021

Started by Netwörkheäd, July 11, 2021, 06:10:19 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Netwörkheäd

July 11, 2021, 06:10:19 AM
Broadcom MediaxChange Vulnerability Affecting Cisco Products: July 2021

A vulnerability in the TrustZone implementation in certain Broadcom MediaxChange firmware was reported by security researchers. To exploit this vulnerability on the affected Cisco products, the attacker would need to dismount the backplate of the device and trigger a specific series of impulses on the chipset. This would reload the device in a special mode allowing access to the bootshell. The attacker would then issue specific commands with crafted parameters in the bootshell, which would trigger the vulnerability. Exploitation of this vulnerability could result in arbitrary code execution with privilege escalation.


At the time of publication, a link to the details about this vulnerability was not available.


This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-brcm-mxc-jul2021-26LqUZUh



     
         
Security Impact Rating:  Medium
   
   
       
CVE: CVE-2021-33478
Source: Broadcom MediaxChange Vulnerability Affecting Cisco Products: July 2021
Let's not argue. Let's network!
Print
Go Up Pages1
User actions