VDB
CVE-2024-20370
CVE-2024-20370
PUBLISHED
Es besteht eine Schwachstelle in Cisco Firepower und Cisco ASA (Adaptive Security Appliance). Dieser Fehler betrifft die FXOS CLI-Funktion auf bestimmten Hardwareplattformen aufgrund unsicherer Speicherung und Berechtigungen bestimmter Systemkonfigurationen und ausführbarer Dateien. Ein lokaler Angreifer mit gültigen administrativen Anmeldedaten kann diese Schwachstelle ausnutzen, um Root-Rechte zu erlangen. Um diese Schwachstelle auszunutzen, muss sich der Angreifer am Gerät authentifizieren und dann eine Reihe von Schritten durchführen, zu denen das Herunterladen von bösartigen Systemdateien und der Zugriff auf die Cisco FXOS CLI zur Konfiguration des Angriffs gehören.
EPSS 0.02% · 5.2th percentile
Risk Scores
EPSS Score
0.02%
5.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Cisco Firepower | |
| Cisco | Cisco ASA (Adaptive Security Appliance) |
Exploit Intelligence
Timeline
- Oct 23, 2024 Coalition ESS Score
- Oct 23, 2024 CVE Published
- Oct 24, 2024 EPSS Score
- Oct 25, 2024 Coalition ESS Score
- Oct 26, 2024 CVE Updated
- Nov 11, 2024 EPSS Score
- Nov 30, 2024 EPSS Score
- Dec 19, 2024 EPSS Score
- Jan 6, 2025 EPSS Score
- Jan 25, 2025 EPSS Score
- Feb 12, 2025 EPSS Score
- Mar 2, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3262.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3262 advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-acl-bypass-VvnLNKqf advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-bf-dos-vDZhLqrW advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-dap-dos-bhEkP7n advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ikev2-dos-9FgEyHsF advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-nsgacl-bypass-77XnEAsL advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-persist-lce-vU3ekMJ3 advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ftd-priv-esc-hBS9gnwq advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-snmp-dos-7TcnzxTU advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdvirtual-dos-MuenGnYR advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-webvpn-dos-hOnB9pH4 advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-xss-yjj7ZjVq advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-tls-CWY6zXB advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-vpn-4gYEWMKg advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-vpn-cZf8gT advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-vpn-nyH3fhp advisory