Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CERTFR-2024-AVI-0602
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Cisco. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à l'intégrité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
L'éditeur indique que les correctifs de sécurité pour la vulnérabilité CVE-2024-20435 affectant Secure Web Appliance seront publiés en juillet (14.5.3 MR) et août (15.0 MR) 2024. Les correctifs pour la vulnérabilité CVE-2024-20296 affectant ISE seront publiés en septembre 2024 (3.2P7) et janvier 2025 (3.1P10), la version 3.3P3 est déjà disponible.
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Cisco | Secure Web Appliance | Secure Web Appliance avec AsyncOS versions 15.0.x antérieures à 15.0 MR | ||
| Cisco | Secure Email Gateway | Secure Email Gateway avec une version de paquet de Content Scanner Tools antérieure à 23.3.0.4823 | ||
| Cisco | Identity Services Engine | Identity Services Engine (ISE) versions antérieures à 3.1P10 | ||
| Cisco | Secure Web Appliance | Secure Web Appliance avec AsyncOS versions 15.1.x | ||
| Cisco | Intelligent Node Software | iNode Software versions antérieures à 4.0.0 | ||
| Cisco | Identity Services Engine | Identity Services Engine (ISE) versions 3.2.x antérieures à 3.2P7 | ||
| Cisco | Identity Services Engine | Identity Services Engine (ISE) versions 3.3.x antérieures à 3.3P3 | ||
| Cisco | Intelligent Node Software | iNode Manager Software versions antérieures à 24.1 | ||
| Cisco | Smart Software Manager | Smart Software Manager (SSM) On-Prem verions 8.x antérieures à 8-202212 | ||
| Cisco | Secure Web Appliance | Secure Web Appliance avec AsyncOS versions antérieures à 14.5.3 MR |
References
| Title | Publication Time | Tags | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Secure Web Appliance avec AsyncOS versions 15.0.x ant\u00e9rieures \u00e0 15.0 MR ",
"product": {
"name": "Secure Web Appliance",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Secure Email Gateway avec une version de paquet de Content Scanner Tools ant\u00e9rieure \u00e0 23.3.0.4823",
"product": {
"name": "Secure Email Gateway",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Identity Services Engine (ISE) versions ant\u00e9rieures \u00e0 3.1P10",
"product": {
"name": "Identity Services Engine",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Secure Web Appliance avec AsyncOS versions 15.1.x ",
"product": {
"name": "Secure Web Appliance",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "iNode Software versions ant\u00e9rieures \u00e0 4.0.0",
"product": {
"name": "Intelligent Node Software",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Identity Services Engine (ISE) versions 3.2.x ant\u00e9rieures \u00e0 3.2P7",
"product": {
"name": "Identity Services Engine",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Identity Services Engine (ISE) versions 3.3.x ant\u00e9rieures \u00e0 3.3P3",
"product": {
"name": "Identity Services Engine",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "iNode Manager Software versions ant\u00e9rieures \u00e0 24.1",
"product": {
"name": "Intelligent Node Software",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Smart Software Manager (SSM) On-Prem verions 8.x ant\u00e9rieures \u00e0 8-202212",
"product": {
"name": "Smart Software Manager",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Secure Web Appliance avec AsyncOS versions ant\u00e9rieures \u00e0 14.5.3 MR",
"product": {
"name": "Secure Web Appliance",
"vendor": {
"name": "Cisco",
"scada": false
}
}
}
],
"affected_systems_content": "L\u0027\u00e9diteur indique que les correctifs de s\u00e9curit\u00e9 pour la vuln\u00e9rabilit\u00e9 CVE-2024-20435 affectant Secure Web Appliance seront publi\u00e9s en juillet (14.5.3 MR) et ao\u00fbt (15.0 MR) 2024. Les correctifs pour la vuln\u00e9rabilit\u00e9 CVE-2024-20296 affectant ISE seront publi\u00e9s en septembre 2024 (3.2P7) et janvier 2025 (3.1P10), la version 3.3P3 est d\u00e9j\u00e0 disponible.",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-20435",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20435"
},
{
"name": "CVE-2024-20401",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20401"
},
{
"name": "CVE-2024-20419",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20419"
},
{
"name": "CVE-2024-20323",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20323"
},
{
"name": "CVE-2024-20296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20296"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0602",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-07-18T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Cisco. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco",
"vendor_advisories": [
{
"published_at": "2024-07-17",
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-esa-afw-bGG2UsjH",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-afw-bGG2UsjH"
},
{
"published_at": "2024-07-17",
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-inode-static-key-VUVCeynn",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-inode-static-key-VUVCeynn"
},
{
"published_at": "2024-07-17",
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-swa-priv-esc-7uHpZsCC",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-priv-esc-7uHpZsCC"
},
{
"published_at": "2024-07-17",
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-ise-file-upload-krW2TxA9",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-krW2TxA9"
},
{
"published_at": "2024-07-17",
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-cssm-auth-sLw3uhUy",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cssm-auth-sLw3uhUy"
}
]
}
CVE-2024-20296 (GCVE-0-2024-20296)
Vulnerability from cvelistv5 – Published: 2024-07-17 16:28 – Updated: 2024-08-01 21:59
VLAI
EPSS
Summary
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to upload arbitrary files to an affected device. To exploit this vulnerability, an attacker would need at least valid Policy Admin credentials on the affected device.
This vulnerability is due to improper validation of files that are uploaded to the web-based management interface. An attacker could exploit this vulnerability by uploading arbitrary files to an affected device. A successful exploit could allow the attacker to store malicious files on the system, execute arbitrary commands on the operating system, and elevate privileges to root.
Severity
4.7 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-434 - Unrestricted Upload of File with Dangerous Type
Assigner
References
1 reference
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| Cisco | Cisco Identity Services Engine Software |
Affected:
2.7.0
Affected: 2.7.0 p1 Affected: 2.7.0 p2 Affected: 2.7.0 p3 Affected: 2.7.0 p4 Affected: 2.7.0 p5 Affected: 2.7.0 p6 Affected: 2.7.0 p7 Affected: 2.7.0 p8 Affected: 2.7.0 p9 Affected: 2.7.0 p10 Affected: 3.0.0 Affected: 3.0.0 p1 Affected: 3.0.0 p2 Affected: 3.0.0 p3 Affected: 3.0.0 p4 Affected: 3.0.0 p5 Affected: 3.0.0 p6 Affected: 3.0.0 p7 Affected: 3.0.0 p8 Affected: 3.1.0 Affected: 3.1.0 p1 Affected: 3.1.0 p3 Affected: 3.1.0 p2 Affected: 3.1.0 p4 Affected: 3.1.0 p5 Affected: 3.1.0 p6 Affected: 3.1.0 p7 Affected: 3.1.0 p8 Affected: 3.1.0 p9 Affected: 3.2.0 Affected: 3.2.0 p1 Affected: 3.2.0 p2 Affected: 3.2.0 p3 Affected: 3.2.0 p4 Affected: 3.2.0 p5 Affected: 3.2.0 p6 Affected: 3.3.0 |
|
| cisco | identity_services_engine_software |
Affected:
2.7.0
Affected: 2.7.0_p1 Affected: 2.7.0_p2 Affected: 2.7.0_p3 Affected: 2.7.0_p4 Affected: 2.7.0_p5 Affected: 2.7.0_p6 Affected: 2.7.0_p7 Affected: 2.7.0_p8 Affected: 2.7.0_p9 Affected: 2.7.0_p10 Affected: 3.0.0 Affected: 3.0.0_p1 Affected: 3.0.0_p2 Affected: 3.0.0_p3 Affected: 3.0.0_p4 Affected: 3.0.0_p5 Affected: 3.0.0_p6 Affected: 3.0.0_p7 Affected: 3.0.0_p8 Affected: 3.1.0 Affected: 3.1.0_p1 Affected: 3.1.0_p3 Affected: 3.1.0_p2 Affected: 3.1.0_p4 Affected: 3.1.0_p5 Affected: 3.1.0_p6 Affected: 3.1.0_p7 Affected: 3.1.0_p8 Affected: 3.1.0_p9 Affected: 3.2.0 Affected: 3.2.0_p1 Affected: 3.2.0_p2 Affected: 3.2.0_p3 Affected: 3.2.0_p4 Affected: 3.2.0_p5 Affected: 3.2.0_p6 Affected: 3.3.0 cpe:2.3:a:cisco:identity_services_engine_software:2.7.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p1:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p2:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p3:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p4:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p5:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p6:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p7:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p8:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p9:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p10:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.0.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p1:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p2:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p3:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p4:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p5:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p6:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p7:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p8:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.1.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p1:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p3:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p2:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p4:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p5:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p6:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p7:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p8:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p9:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.2.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p1:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p2:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p3:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p4:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p5:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p6:*:*:*:*:*:*:* cpe:2.3:a:cisco:identity_services_engine_software:3.3.0:*:*:*:*:*:*:* |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p1:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p2:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p3:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p4:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p5:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p6:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p7:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p8:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p9:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:2.7.0_p10:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.0.0:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p1:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p2:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p3:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p4:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p5:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p6:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p7:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.0.0_p8:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.1.0:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p1:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p3:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p2:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p4:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p5:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p6:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p7:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p8:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.1.0_p9:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.2.0:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p1:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p2:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p3:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p4:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p5:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.2.0_p6:*:*:*:*:*:*:*",
"cpe:2.3:a:cisco:identity_services_engine_software:3.3.0:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "identity_services_engine_software",
"vendor": "cisco",
"versions": [
{
"status": "affected",
"version": "2.7.0"
},
{
"status": "affected",
"version": "2.7.0_p1"
},
{
"status": "affected",
"version": "2.7.0_p2"
},
{
"status": "affected",
"version": "2.7.0_p3"
},
{
"status": "affected",
"version": "2.7.0_p4"
},
{
"status": "affected",
"version": "2.7.0_p5"
},
{
"status": "affected",
"version": "2.7.0_p6"
},
{
"status": "affected",
"version": "2.7.0_p7"
},
{
"status": "affected",
"version": "2.7.0_p8"
},
{
"status": "affected",
"version": "2.7.0_p9"
},
{
"status": "affected",
"version": "2.7.0_p10"
},
{
"status": "affected",
"version": "3.0.0"
},
{
"status": "affected",
"version": "3.0.0_p1"
},
{
"status": "affected",
"version": "3.0.0_p2"
},
{
"status": "affected",
"version": "3.0.0_p3"
},
{
"status": "affected",
"version": "3.0.0_p4"
},
{
"status": "affected",
"version": "3.0.0_p5"
},
{
"status": "affected",
"version": "3.0.0_p6"
},
{
"status": "affected",
"version": "3.0.0_p7"
},
{
"status": "affected",
"version": "3.0.0_p8"
},
{
"status": "affected",
"version": "3.1.0"
},
{
"status": "affected",
"version": "3.1.0_p1"
},
{
"status": "affected",
"version": "3.1.0_p3"
},
{
"status": "affected",
"version": "3.1.0_p2"
},
{
"status": "affected",
"version": "3.1.0_p4"
},
{
"status": "affected",
"version": "3.1.0_p5"
},
{
"status": "affected",
"version": "3.1.0_p6"
},
{
"status": "affected",
"version": "3.1.0_p7"
},
{
"status": "affected",
"version": "3.1.0_p8"
},
{
"status": "affected",
"version": "3.1.0_p9"
},
{
"status": "affected",
"version": "3.2.0"
},
{
"status": "affected",
"version": "3.2.0_p1"
},
{
"status": "affected",
"version": "3.2.0_p2"
},
{
"status": "affected",
"version": "3.2.0_p3"
},
{
"status": "affected",
"version": "3.2.0_p4"
},
{
"status": "affected",
"version": "3.2.0_p5"
},
{
"status": "affected",
"version": "3.2.0_p6"
},
{
"status": "affected",
"version": "3.3.0"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-20296",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-17T00:00:00+00:00",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-07-18T03:55:22.366Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T21:59:41.103Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "cisco-sa-ise-file-upload-krW2TxA9",
"tags": [
"x_transferred"
],
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-krW2TxA9"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cisco Identity Services Engine Software",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "2.7.0"
},
{
"status": "affected",
"version": "2.7.0 p1"
},
{
"status": "affected",
"version": "2.7.0 p2"
},
{
"status": "affected",
"version": "2.7.0 p3"
},
{
"status": "affected",
"version": "2.7.0 p4"
},
{
"status": "affected",
"version": "2.7.0 p5"
},
{
"status": "affected",
"version": "2.7.0 p6"
},
{
"status": "affected",
"version": "2.7.0 p7"
},
{
"status": "affected",
"version": "2.7.0 p8"
},
{
"status": "affected",
"version": "2.7.0 p9"
},
{
"status": "affected",
"version": "2.7.0 p10"
},
{
"status": "affected",
"version": "3.0.0"
},
{
"status": "affected",
"version": "3.0.0 p1"
},
{
"status": "affected",
"version": "3.0.0 p2"
},
{
"status": "affected",
"version": "3.0.0 p3"
},
{
"status": "affected",
"version": "3.0.0 p4"
},
{
"status": "affected",
"version": "3.0.0 p5"
},
{
"status": "affected",
"version": "3.0.0 p6"
},
{
"status": "affected",
"version": "3.0.0 p7"
},
{
"status": "affected",
"version": "3.0.0 p8"
},
{
"status": "affected",
"version": "3.1.0"
},
{
"status": "affected",
"version": "3.1.0 p1"
},
{
"status": "affected",
"version": "3.1.0 p3"
},
{
"status": "affected",
"version": "3.1.0 p2"
},
{
"status": "affected",
"version": "3.1.0 p4"
},
{
"status": "affected",
"version": "3.1.0 p5"
},
{
"status": "affected",
"version": "3.1.0 p6"
},
{
"status": "affected",
"version": "3.1.0 p7"
},
{
"status": "affected",
"version": "3.1.0 p8"
},
{
"status": "affected",
"version": "3.1.0 p9"
},
{
"status": "affected",
"version": "3.2.0"
},
{
"status": "affected",
"version": "3.2.0 p1"
},
{
"status": "affected",
"version": "3.2.0 p2"
},
{
"status": "affected",
"version": "3.2.0 p3"
},
{
"status": "affected",
"version": "3.2.0 p4"
},
{
"status": "affected",
"version": "3.2.0 p5"
},
{
"status": "affected",
"version": "3.2.0 p6"
},
{
"status": "affected",
"version": "3.3.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to upload arbitrary files to an affected device. To exploit this vulnerability, an attacker would need at least valid Policy Admin credentials on the affected device.\r\n\r This vulnerability is due to improper validation of files that are uploaded to the web-based management interface. An attacker could exploit this vulnerability by uploading arbitrary files to an affected device. A successful exploit could allow the attacker to store malicious files on the system, execute arbitrary commands on the operating system, and elevate privileges to root."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-434",
"description": "Unrestricted Upload of File with Dangerous Type",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-07-17T16:28:22.193Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-ise-file-upload-krW2TxA9",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-krW2TxA9"
}
],
"source": {
"advisory": "cisco-sa-ise-file-upload-krW2TxA9",
"defects": [
"CSCwh97876"
],
"discovery": "EXTERNAL"
}
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2024-20296",
"datePublished": "2024-07-17T16:28:22.193Z",
"dateReserved": "2023-11-08T15:08:07.629Z",
"dateUpdated": "2024-08-01T21:59:41.103Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-20323 (GCVE-0-2024-20323)
Vulnerability from cvelistv5 – Published: 2024-07-17 16:28 – Updated: 2024-08-01 21:59
VLAI
EPSS
Summary
A vulnerability in Cisco Intelligent Node (iNode) Software could allow an unauthenticated, remote attacker to hijack the TLS connection between Cisco iNode Manager and associated intelligent nodes and send arbitrary traffic to an affected device.
This vulnerability is due to the presence of hard-coded cryptographic material. An attacker in a man-in-the-middle position between Cisco iNode Manager and associated deployed nodes could exploit this vulnerability by using the static cryptographic key to generate a trusted certificate and impersonate an affected device. A successful exploit could allow the attacker to read data that is meant for a legitimate device, modify the startup configuration of an associated node, and, consequently, cause a denial of service (DoS) condition for downstream devices that are connected to the affected node.
Severity
7.5 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-321 - Use of Hard-coded Cryptographic Key
Assigner
References
1 reference
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| Cisco | Cisco Intelligent Node Manager |
Affected:
N/A
|
|
| Cisco | Cisco Intelligent Node Software |
Affected:
N/A
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-20323",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-22T20:07:08.038890Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-07-22T20:07:15.658Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T21:59:41.478Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "cisco-sa-inode-static-key-VUVCeynn",
"tags": [
"x_transferred"
],
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-inode-static-key-VUVCeynn"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cisco Intelligent Node Manager",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "N/A"
}
]
},
{
"product": "Cisco Intelligent Node Software",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "N/A"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in Cisco Intelligent Node (iNode) Software could allow an unauthenticated, remote attacker to hijack the TLS connection between Cisco iNode Manager and associated intelligent nodes and send arbitrary traffic to an affected device.\r\n\r This vulnerability is due to the presence of hard-coded cryptographic material. An attacker in a man-in-the-middle position between Cisco iNode Manager and associated deployed nodes could exploit this vulnerability by using the static cryptographic key to generate a trusted certificate and impersonate an affected device. A successful exploit could allow the attacker to read data that is meant for a legitimate device, modify the startup configuration of an associated node, and, consequently, cause a denial of service (DoS) condition for downstream devices that are connected to the affected node."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:N",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-321",
"description": "Use of Hard-coded Cryptographic Key",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-07-17T16:28:39.858Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-inode-static-key-VUVCeynn",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-inode-static-key-VUVCeynn"
}
],
"source": {
"advisory": "cisco-sa-inode-static-key-VUVCeynn",
"discovery": "INTERNAL"
}
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2024-20323",
"datePublished": "2024-07-17T16:28:39.858Z",
"dateReserved": "2023-11-08T15:08:07.640Z",
"dateUpdated": "2024-08-01T21:59:41.478Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-20401 (GCVE-0-2024-20401)
Vulnerability from cvelistv5 – Published: 2024-07-17 16:26 – Updated: 2024-08-01 21:59
VLAI
EPSS
Summary
A vulnerability in the content scanning and message filtering features of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to overwrite arbitrary files on the underlying operating system.
This vulnerability is due to improper handling of email attachments when file analysis and content filters are enabled. An attacker could exploit this vulnerability by sending an email that contains a crafted attachment through an affected device. A successful exploit could allow the attacker to replace any file on the underlying file system. The attacker could then perform any of the following actions: add users with root privileges, modify the device configuration, execute arbitrary code, or cause a permanent denial of service (DoS) condition on the affected device.
Note: Manual intervention is required to recover from the DoS condition. Customers are advised to contact the Cisco Technical Assistance Center (TAC) to help recover a device in this condition.
Severity
9.8 (Critical)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-36 - Absolute Path Traversal
Assigner
References
1 reference
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| Cisco | Cisco Secure Email |
Affected:
N/A
|
|
| cisco | secure_email |
Affected:
0 , < 15.5.1-055
(custom)
cpe:2.3:a:cisco:secure_email:-:*:*:*:*:*:*:* |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:cisco:secure_email:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "secure_email",
"vendor": "cisco",
"versions": [
{
"lessThan": "15.5.1-055",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-20401",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-18T00:00:00+00:00",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-07-19T03:55:39.066Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T21:59:42.233Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "cisco-sa-esa-afw-bGG2UsjH",
"tags": [
"x_transferred"
],
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-afw-bGG2UsjH"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cisco Secure Email",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "N/A"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in the content scanning and message filtering features of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to overwrite arbitrary files on the underlying operating system.\r\n\r This vulnerability is due to improper handling of email attachments when file analysis and content filters are enabled. An attacker could exploit this vulnerability by sending an email that contains a crafted attachment through an affected device. A successful exploit could allow the attacker to replace any file on the underlying file system. The attacker could then perform any of the following actions: add users with root privileges, modify the device configuration, execute arbitrary code, or cause a permanent denial of service (DoS) condition on the affected device.\r\n\r Note: Manual intervention is required to recover from the DoS condition. Customers are advised to contact the Cisco Technical Assistance Center (TAC) to help recover a device in this condition."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-36",
"description": "Absolute Path Traversal",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-07-17T16:26:38.305Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-esa-afw-bGG2UsjH",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-afw-bGG2UsjH"
}
],
"source": {
"advisory": "cisco-sa-esa-afw-bGG2UsjH",
"defects": [
"CSCwj53998"
],
"discovery": "EXTERNAL"
}
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2024-20401",
"datePublished": "2024-07-17T16:26:38.305Z",
"dateReserved": "2023-11-08T15:08:07.660Z",
"dateUpdated": "2024-08-01T21:59:42.233Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-20419 (GCVE-0-2024-20419)
Vulnerability from cvelistv5 – Published: 2024-07-17 16:27 – Updated: 2025-02-13 17:32
VLAI
EPSS
Summary
A vulnerability in the authentication system of Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an unauthenticated, remote attacker to change the password of any user, including administrative users.
This vulnerability is due to improper implementation of the password-change process. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow an attacker to access the web UI or API with the privileges of the compromised user.
Severity
10 (Critical)
SSVC
Exploitation: poc
Automatable: yes
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-620 - Unverified Password Change
Assigner
References
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| Cisco | Cisco Smart Software Manager On-Prem |
Affected:
8-202206
|
|
| cisco | smart_software_manager_on-prem |
Affected:
8-202206
cpe:2.3:a:cisco:smart_software_manager_on-prem:8-202206:*:*:*:*:*:*:* |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:cisco:smart_software_manager_on-prem:8-202206:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "smart_software_manager_on-prem",
"vendor": "cisco",
"versions": [
{
"status": "affected",
"version": "8-202206"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-20419",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-08-07T00:00:00+00:00",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-08-10T03:55:21.027Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T21:59:41.794Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "cisco-sa-cssm-auth-sLw3uhUy",
"tags": [
"x_transferred"
],
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cssm-auth-sLw3uhUy"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cisco Smart Software Manager On-Prem",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "8-202206"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in the authentication system of Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an unauthenticated, remote attacker to change the password of any user, including administrative users.\r\n\r This vulnerability is due to improper implementation of the password-change process. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow an attacker to access the web UI or API with the privileges of the compromised user."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco PSIRT is aware that proof-of-concept exploit code is available for the vulnerability that is described in this advisory.\r\n\r\nThe Cisco PSIRT is not aware of any malicious use of the vulnerability that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 10,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-620",
"description": "Unverified Password Change",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-08-13T17:12:40.119Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-cssm-auth-sLw3uhUy",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cssm-auth-sLw3uhUy"
},
{
"url": "https://www.secpod.com/blog/critical-flaw-in-ciscos-secure-email-gateways-allows-attackers-to-control-the-device-completely/"
}
],
"source": {
"advisory": "cisco-sa-cssm-auth-sLw3uhUy",
"defects": [
"CSCwk21399"
],
"discovery": "EXTERNAL"
}
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2024-20419",
"datePublished": "2024-07-17T16:27:35.418Z",
"dateReserved": "2023-11-08T15:08:07.664Z",
"dateUpdated": "2025-02-13T17:32:31.164Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-20435 (GCVE-0-2024-20435)
Vulnerability from cvelistv5 – Published: 2024-07-17 16:27 – Updated: 2024-08-01 21:59
VLAI
EPSS
Summary
A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated, local attacker to execute arbitrary commands and elevate privileges to root.
This vulnerability is due to insufficient validation of user-supplied input for the CLI. An attacker could exploit this vulnerability by authenticating to the system and executing a crafted command on the affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system and elevate privileges to root. To successfully exploit this vulnerability, an attacker would need at least guest credentials.
Severity
8.8 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-250 - Execution with Unnecessary Privileges
Assigner
References
1 reference
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| Cisco | Cisco Secure Web Appliance |
Affected:
11.7.0-406
Affected: 11.7.0-418 Affected: 11.7.1-049 Affected: 11.7.1-006 Affected: 11.7.1-020 Affected: 11.7.2-011 Affected: 11.8.0-414 Affected: 11.8.1-023 Affected: 11.8.3-018 Affected: 11.8.3-021 Affected: 12.0.1-268 Affected: 12.0.3-007 Affected: 12.5.2-007 Affected: 12.5.1-011 Affected: 12.5.4-005 Affected: 12.5.5-004 Affected: 12.5.6-008 Affected: 14.5.0-498 Affected: 14.5.1-016 Affected: 14.5.2-011 Affected: 14.0.3-014 Affected: 14.0.2-012 Affected: 14.0.4-005 Affected: 14.0.5-007 Affected: 15.0.0-322 Affected: 15.0.0-355 Affected: 15.1.0-287 |
|
| cisco | secure_web_appliance |
Affected:
11.7.0-406
Affected: 11.7.0-418 Affected: 11.7.1-006 Affected: 11.7.1-020 Affected: 11.7.1-049 Affected: 11.7.2-011 Affected: 11.8.0-414 Affected: 11.8.1-023 Affected: 11.8.3-018 Affected: 11.8.3-021 Affected: 12.0.1-268 Affected: 12.0.3-007 Affected: 12.5.1-011 Affected: 12.5.2-007 Affected: 12.5.4-005 Affected: 12.5.5-004 Affected: 12.5.6-008 Affected: 14.0.2-012 Affected: 14.0.3-014 Affected: 14.0.4-005 Affected: 14.0.5-007 Affected: 14.5.0-498 Affected: 14.5.1-016 Affected: 14.5.2-011 Affected: 15.0.0-322 Affected: 15.0.0-355 Affected: 15.1.0-287 cpe:2.3:h:cisco:secure_web_appliance:11.7.0-406:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:11.7.0-418:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:11.7.1-006:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:11.7.1-020:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:11.7.1-049:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:11.7.2-011:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:11.8.0-414:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:11.8.1-023:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:11.8.3-018:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:11.8.3-021:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:12.0.1-268:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:12.0.3-007:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:12.5.1-011:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:12.5.2-007:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:12.5.4-005:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:12.5.5-004:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:12.5.6-008:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:14.0.2-012:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:14.0.3-014:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:14.0.4-005:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:14.0.5-007:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:14.5.0-498:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:14.5.1-016:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:14.5.2-011:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:15.0.0-322:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:15.0.0-355:*:*:*:*:*:*:* cpe:2.3:h:cisco:secure_web_appliance:15.1.0-287:*:*:*:*:*:*:* |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:h:cisco:secure_web_appliance:11.7.0-406:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.7.0-418:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.7.1-006:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.7.1-020:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.7.1-049:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.7.2-011:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.8.0-414:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.8.1-023:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.8.3-018:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.8.3-021:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.0.1-268:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.0.3-007:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.5.1-011:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.5.2-007:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.5.4-005:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.5.5-004:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.5.6-008:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.0.2-012:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.0.3-014:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.0.4-005:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.0.5-007:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.5.0-498:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.5.1-016:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.5.2-011:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:15.0.0-322:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:15.0.0-355:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:15.1.0-287:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "secure_web_appliance",
"vendor": "cisco",
"versions": [
{
"status": "affected",
"version": "11.7.0-406"
},
{
"status": "affected",
"version": "11.7.0-418"
},
{
"status": "affected",
"version": "11.7.1-006"
},
{
"status": "affected",
"version": "11.7.1-020"
},
{
"status": "affected",
"version": "11.7.1-049"
},
{
"status": "affected",
"version": "11.7.2-011"
},
{
"status": "affected",
"version": "11.8.0-414"
},
{
"status": "affected",
"version": "11.8.1-023"
},
{
"status": "affected",
"version": "11.8.3-018"
},
{
"status": "affected",
"version": "11.8.3-021"
},
{
"status": "affected",
"version": "12.0.1-268"
},
{
"status": "affected",
"version": "12.0.3-007"
},
{
"status": "affected",
"version": "12.5.1-011"
},
{
"status": "affected",
"version": "12.5.2-007"
},
{
"status": "affected",
"version": "12.5.4-005"
},
{
"status": "affected",
"version": "12.5.5-004"
},
{
"status": "affected",
"version": "12.5.6-008"
},
{
"status": "affected",
"version": "14.0.2-012"
},
{
"status": "affected",
"version": "14.0.3-014"
},
{
"status": "affected",
"version": "14.0.4-005"
},
{
"status": "affected",
"version": "14.0.5-007"
},
{
"status": "affected",
"version": "14.5.0-498"
},
{
"status": "affected",
"version": "14.5.1-016"
},
{
"status": "affected",
"version": "14.5.2-011"
},
{
"status": "affected",
"version": "15.0.0-322"
},
{
"status": "affected",
"version": "15.0.0-355"
},
{
"status": "affected",
"version": "15.1.0-287"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-20435",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-17T17:15:02.287832Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-07-17T17:28:04.667Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T21:59:42.297Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "cisco-sa-swa-priv-esc-7uHpZsCC",
"tags": [
"x_transferred"
],
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-priv-esc-7uHpZsCC"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cisco Secure Web Appliance",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "11.7.0-406"
},
{
"status": "affected",
"version": "11.7.0-418"
},
{
"status": "affected",
"version": "11.7.1-049"
},
{
"status": "affected",
"version": "11.7.1-006"
},
{
"status": "affected",
"version": "11.7.1-020"
},
{
"status": "affected",
"version": "11.7.2-011"
},
{
"status": "affected",
"version": "11.8.0-414"
},
{
"status": "affected",
"version": "11.8.1-023"
},
{
"status": "affected",
"version": "11.8.3-018"
},
{
"status": "affected",
"version": "11.8.3-021"
},
{
"status": "affected",
"version": "12.0.1-268"
},
{
"status": "affected",
"version": "12.0.3-007"
},
{
"status": "affected",
"version": "12.5.2-007"
},
{
"status": "affected",
"version": "12.5.1-011"
},
{
"status": "affected",
"version": "12.5.4-005"
},
{
"status": "affected",
"version": "12.5.5-004"
},
{
"status": "affected",
"version": "12.5.6-008"
},
{
"status": "affected",
"version": "14.5.0-498"
},
{
"status": "affected",
"version": "14.5.1-016"
},
{
"status": "affected",
"version": "14.5.2-011"
},
{
"status": "affected",
"version": "14.0.3-014"
},
{
"status": "affected",
"version": "14.0.2-012"
},
{
"status": "affected",
"version": "14.0.4-005"
},
{
"status": "affected",
"version": "14.0.5-007"
},
{
"status": "affected",
"version": "15.0.0-322"
},
{
"status": "affected",
"version": "15.0.0-355"
},
{
"status": "affected",
"version": "15.1.0-287"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated, local attacker to execute arbitrary commands and elevate privileges to root.\r\n\r This vulnerability is due to insufficient validation of user-supplied input for the CLI. An attacker could exploit this vulnerability by authenticating to the system and executing a crafted command on the affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system and elevate privileges to root. To successfully exploit this vulnerability, an attacker would need at least guest credentials."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-250",
"description": "Execution with Unnecessary Privileges",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-07-17T16:27:59.858Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-swa-priv-esc-7uHpZsCC",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-priv-esc-7uHpZsCC"
}
],
"source": {
"advisory": "cisco-sa-swa-priv-esc-7uHpZsCC",
"defects": [
"CSCwj30015"
],
"discovery": "EXTERNAL"
}
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2024-20435",
"datePublished": "2024-07-17T16:27:59.858Z",
"dateReserved": "2023-11-08T15:08:07.667Z",
"dateUpdated": "2024-08-01T21:59:42.297Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…