VDB
CVE-2024-20366
CVE-2024-20366
PUBLISHED
CVSS 7.800000190734863 HIGH
A vulnerability in the Tail-f High Availability Cluster Communications (HCC) function pack of Cisco Crosswork Network Services Orchestrator (NSO) could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability exists because a user-controlled search path is used to locate executable files. An attacker could exploit this vulnerability by configuring the application in a way that causes a malicious file to be executed. A successful exploit could allow the attacker to execute arbitrary code on an affected device as the root user. To exploit this vulnerability, the attacker would need valid credentials on an affected device.
EPSS 0.12% · 29.8th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.12%
29.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| cisco | network_services_orchestrator | 5.1.1.1, 5.1.1.1 |
| Cisco | Cisco Network Services Orchestrator | 6.2.2, 6.1.3.1, 6.1.3.2 |
| cisco | network_services_orchestrator | 6.0, 5.0, 6.0 |
Exploit Intelligence
Timeline
- May 15, 2024 CVE Published
- May 16, 2024 EPSS Score
- Jun 10, 2024 EPSS Score
- Jul 4, 2024 EPSS Score
- Jul 28, 2024 EPSS Score
- Aug 20, 2024 EPSS Score
- Sep 13, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 7, 2024 EPSS Score
- Oct 31, 2024 EPSS Score
- Nov 24, 2024 EPSS Score
- Dec 19, 2024 EPSS Score
References
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nso-rwpesc-qrQGnh3f advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cnfd-rwpesc-ZAOufyx8 advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nso-hcc-priv-esc-OWBWCs5D advisory
- https://nvd.nist.gov/vuln/detail/CVE-2024-20366 advisory