CVE-2024-20381
Published: Sep 11, 2024
Modified: Sep 27, 2024
CVSS v3.1
8.8
Description
A vulnerability in the JSON-RPC API feature in Cisco Crosswork Network Services Orchestrator (NSO) and ConfD that is used by the web-based management interfaces of Cisco Optical Site Manager and Cisco RV340 Dual WAN Gigabit VPN Routers could allow an authenticated, remote attacker to modify the configuration of an affected application or device. This vulnerability is due to improper authorization checks on the API. An attacker with privileges sufficient to access the affected application or device could exploit this vulnerability by sending malicious requests to the JSON-RPC API. A successful exploit could allow the attacker to make unauthorized modifications to the configuration of the affected application or device, including creating new user accounts or elevating their own privileges on an affected system.
| Vendor | Product | Versions |
|---|---|---|
Cisco | Cisco IOS XR Software | affected 6.5.3affected 6.5.29affected 6.5.1affected 6.6.1affected 6.5.2+83 more versions |
Cisco | Cisco Network Services Orchestrator | affected 5.4.1affected 5.3.1affected 4.4.1affected 5.2.1.1affected 5.4.0.1+158 more versions |
Cisco | Cisco Small Business RV Series Router Firmware | affected 1.0.01.17affected 1.0.03.17affected 1.0.01.16affected 1.0.01.18affected 1.0.00.29+15 more versions |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now