VDB
CVE-2024-20302
CVE-2024-20302
PUBLISHED
Es existiert eine Schwachstelle in Cisco Nexus Dashboard in der Komponente Nexus Dashboard Orchestrator (NDO). Diese ist auf einen Fehler bei der Zugriffskontrolle zurückzuführen. Ein entfernter, authentisierter Angreifer mit bestimmten Berechtigungen kann diese Schwachstelle ausnutzen, um Sicherheitsvorkehrungen zu umgehen und Daten zu manipulieren.
EPSS 0.12% · 30.8th percentile
Risk Scores
EPSS Score
0.12%
30.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Cisco Nexus Dashboard <3.1(1k) |
Exploit Intelligence
- cisco-sa-ndo-upav-YRqsCcSP (circl)
Timeline
- Apr 3, 2024 CVE Published
- Apr 4, 2024 EPSS Score
- Apr 29, 2024 EPSS Score
- May 25, 2024 EPSS Score
- Jun 20, 2024 EPSS Score
- Jul 15, 2024 EPSS Score
- Aug 10, 2024 EPSS Score
- Sep 4, 2024 EPSS Score
- Sep 29, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 24, 2024 EPSS Score
- Nov 19, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0777.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0777 advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfccsrf-TEmZEfJ9 advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndru-pesc-kZ2PQLZH advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndidv-LmXdvAf2 advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndo-upav-YRqsCcSP advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-dir-trav-SSn3AYDw advisory