VDB
CVE-2024-20337
CVE-2024-20337
PUBLISHED
Es existiert eine Schwachstelle in Cisco Secure Client. Diese ist auf eine Anfälligkeit für CRLF-Angriffe zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um Benutzerrechte zu übernehmen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.
EPSS 3.57% · 88.0th percentile
Risk Scores
EPSS Score
3.57%
88.0th percentile
Exploit Intelligence
- CIRCL seen: CVE-2024-20337 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2024-20337 (circl-sighting)
- CIRCL seen: CVE-2024-20337 (circl-sighting)
- CIRCL seen: CVE-2024-20337 (circl-sighting)
- CIRCL seen: CVE-2024-20337 (circl-sighting)
- CIRCL seen: CVE-2024-20337 (circl-sighting)
- CIRCL seen: CVE-2024-20337 (circl-sighting)
- CIRCL seen: CVE-2024-20337 (circl-sighting)
- CIRCL seen: CVE-2024-20337 (circl-sighting)
- CIRCL seen: CVE-2024-20337 (circl-sighting)
…and 1 more exploits
Timeline
- Mar 6, 2024 CVE Published
- Mar 6, 2024 PoC Published
- Mar 7, 2024 EPSS Score
- Mar 8, 2024 PoC Published
- Mar 8, 2024 PoC Published
- Mar 8, 2024 PoC Published
- Mar 8, 2024 PoC Published
- Mar 8, 2024 PoC Published
- Mar 8, 2024 PoC Published
- Mar 9, 2024 PoC Published
- Mar 10, 2024 PoC Published
- Mar 10, 2024 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0565.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0565 advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-secure-client-crlf-W43V4G7 advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-secure-privesc-sYxQO6ds advisory