CVE-2024-20435 (GCVE-0-2024-20435)
Vulnerability from cvelistv5 – Published: 2024-07-17 16:27 – Updated: 2024-08-01 21:59
VLAI?
Summary
A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated, local attacker to execute arbitrary commands and elevate privileges to root.
This vulnerability is due to insufficient validation of user-supplied input for the CLI. An attacker could exploit this vulnerability by authenticating to the system and executing a crafted command on the affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system and elevate privileges to root. To successfully exploit this vulnerability, an attacker would need at least guest credentials.
Severity ?
8.8 (High)
CWE
- CWE-250 - Execution with Unnecessary Privileges
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Cisco | Cisco Secure Web Appliance |
Affected:
11.7.0-406
Affected: 11.7.0-418 Affected: 11.7.1-049 Affected: 11.7.1-006 Affected: 11.7.1-020 Affected: 11.7.2-011 Affected: 11.8.0-414 Affected: 11.8.1-023 Affected: 11.8.3-018 Affected: 11.8.3-021 Affected: 12.0.1-268 Affected: 12.0.3-007 Affected: 12.5.2-007 Affected: 12.5.1-011 Affected: 12.5.4-005 Affected: 12.5.5-004 Affected: 12.5.6-008 Affected: 14.5.0-498 Affected: 14.5.1-016 Affected: 14.5.2-011 Affected: 14.0.3-014 Affected: 14.0.2-012 Affected: 14.0.4-005 Affected: 14.0.5-007 Affected: 15.0.0-322 Affected: 15.0.0-355 Affected: 15.1.0-287 |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:h:cisco:secure_web_appliance:11.7.0-406:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.7.0-418:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.7.1-006:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.7.1-020:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.7.1-049:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.7.2-011:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.8.0-414:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.8.1-023:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.8.3-018:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:11.8.3-021:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.0.1-268:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.0.3-007:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.5.1-011:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.5.2-007:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.5.4-005:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.5.5-004:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:12.5.6-008:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.0.2-012:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.0.3-014:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.0.4-005:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.0.5-007:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.5.0-498:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.5.1-016:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:14.5.2-011:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:15.0.0-322:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:15.0.0-355:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:secure_web_appliance:15.1.0-287:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "secure_web_appliance",
"vendor": "cisco",
"versions": [
{
"status": "affected",
"version": "11.7.0-406"
},
{
"status": "affected",
"version": "11.7.0-418"
},
{
"status": "affected",
"version": "11.7.1-006"
},
{
"status": "affected",
"version": "11.7.1-020"
},
{
"status": "affected",
"version": "11.7.1-049"
},
{
"status": "affected",
"version": "11.7.2-011"
},
{
"status": "affected",
"version": "11.8.0-414"
},
{
"status": "affected",
"version": "11.8.1-023"
},
{
"status": "affected",
"version": "11.8.3-018"
},
{
"status": "affected",
"version": "11.8.3-021"
},
{
"status": "affected",
"version": "12.0.1-268"
},
{
"status": "affected",
"version": "12.0.3-007"
},
{
"status": "affected",
"version": "12.5.1-011"
},
{
"status": "affected",
"version": "12.5.2-007"
},
{
"status": "affected",
"version": "12.5.4-005"
},
{
"status": "affected",
"version": "12.5.5-004"
},
{
"status": "affected",
"version": "12.5.6-008"
},
{
"status": "affected",
"version": "14.0.2-012"
},
{
"status": "affected",
"version": "14.0.3-014"
},
{
"status": "affected",
"version": "14.0.4-005"
},
{
"status": "affected",
"version": "14.0.5-007"
},
{
"status": "affected",
"version": "14.5.0-498"
},
{
"status": "affected",
"version": "14.5.1-016"
},
{
"status": "affected",
"version": "14.5.2-011"
},
{
"status": "affected",
"version": "15.0.0-322"
},
{
"status": "affected",
"version": "15.0.0-355"
},
{
"status": "affected",
"version": "15.1.0-287"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-20435",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-17T17:15:02.287832Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-07-17T17:28:04.667Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T21:59:42.297Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "cisco-sa-swa-priv-esc-7uHpZsCC",
"tags": [
"x_transferred"
],
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-priv-esc-7uHpZsCC"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cisco Secure Web Appliance",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "11.7.0-406"
},
{
"status": "affected",
"version": "11.7.0-418"
},
{
"status": "affected",
"version": "11.7.1-049"
},
{
"status": "affected",
"version": "11.7.1-006"
},
{
"status": "affected",
"version": "11.7.1-020"
},
{
"status": "affected",
"version": "11.7.2-011"
},
{
"status": "affected",
"version": "11.8.0-414"
},
{
"status": "affected",
"version": "11.8.1-023"
},
{
"status": "affected",
"version": "11.8.3-018"
},
{
"status": "affected",
"version": "11.8.3-021"
},
{
"status": "affected",
"version": "12.0.1-268"
},
{
"status": "affected",
"version": "12.0.3-007"
},
{
"status": "affected",
"version": "12.5.2-007"
},
{
"status": "affected",
"version": "12.5.1-011"
},
{
"status": "affected",
"version": "12.5.4-005"
},
{
"status": "affected",
"version": "12.5.5-004"
},
{
"status": "affected",
"version": "12.5.6-008"
},
{
"status": "affected",
"version": "14.5.0-498"
},
{
"status": "affected",
"version": "14.5.1-016"
},
{
"status": "affected",
"version": "14.5.2-011"
},
{
"status": "affected",
"version": "14.0.3-014"
},
{
"status": "affected",
"version": "14.0.2-012"
},
{
"status": "affected",
"version": "14.0.4-005"
},
{
"status": "affected",
"version": "14.0.5-007"
},
{
"status": "affected",
"version": "15.0.0-322"
},
{
"status": "affected",
"version": "15.0.0-355"
},
{
"status": "affected",
"version": "15.1.0-287"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated, local attacker to execute arbitrary commands and elevate privileges to root.\r\n\r This vulnerability is due to insufficient validation of user-supplied input for the CLI. An attacker could exploit this vulnerability by authenticating to the system and executing a crafted command on the affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system and elevate privileges to root. To successfully exploit this vulnerability, an attacker would need at least guest credentials."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-250",
"description": "Execution with Unnecessary Privileges",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-07-17T16:27:59.858Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-swa-priv-esc-7uHpZsCC",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-priv-esc-7uHpZsCC"
}
],
"source": {
"advisory": "cisco-sa-swa-priv-esc-7uHpZsCC",
"defects": [
"CSCwj30015"
],
"discovery": "EXTERNAL"
}
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2024-20435",
"datePublished": "2024-07-17T16:27:59.858Z",
"dateReserved": "2023-11-08T15:08:07.667Z",
"dateUpdated": "2024-08-01T21:59:42.297Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated, local attacker to execute arbitrary commands and elevate privileges to root.\\r\\n\\r This vulnerability is due to insufficient validation of user-supplied input for the CLI. An attacker could exploit this vulnerability by authenticating to the system and executing a crafted command on the affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system and elevate privileges to root. To successfully exploit this vulnerability, an attacker would need at least guest credentials.\"}, {\"lang\": \"es\", \"value\": \"Una vulnerabilidad en la CLI de Cisco AsyncOS para Secure Web Appliance podr\\u00eda permitir que un atacante local autenticado ejecute comandos arbitrarios y eleve privilegios a root. Esta vulnerabilidad se debe a una validaci\\u00f3n insuficiente de la entrada proporcionada por el usuario para la CLI. Un atacante podr\\u00eda aprovechar esta vulnerabilidad autentic\\u00e1ndose en el sistema y ejecutando un comando manipulado en el dispositivo afectado. Un exploit exitoso podr\\u00eda permitir al atacante ejecutar comandos arbitrarios en el sistema operativo subyacente y elevar los privilegios a root. Para explotar con \\u00e9xito esta vulnerabilidad, un atacante necesitar\\u00eda al menos credenciales de invitado.\"}]",
"id": "CVE-2024-20435",
"lastModified": "2024-11-21T08:52:38.787",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"ykramarz@cisco.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.0, \"impactScore\": 6.0}]}",
"published": "2024-07-17T17:15:14.787",
"references": "[{\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-priv-esc-7uHpZsCC\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-priv-esc-7uHpZsCC\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "ykramarz@cisco.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"ykramarz@cisco.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-250\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-20435\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2024-07-17T17:15:14.787\",\"lastModified\":\"2025-08-08T01:55:41.180\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated, local attacker to execute arbitrary commands and elevate privileges to root.\\r\\n\\r This vulnerability is due to insufficient validation of user-supplied input for the CLI. An attacker could exploit this vulnerability by authenticating to the system and executing a crafted command on the affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system and elevate privileges to root. To successfully exploit this vulnerability, an attacker would need at least guest credentials.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad en la CLI de Cisco AsyncOS para Secure Web Appliance podr\u00eda permitir que un atacante local autenticado ejecute comandos arbitrarios y eleve privilegios a root. Esta vulnerabilidad se debe a una validaci\u00f3n insuficiente de la entrada proporcionada por el usuario para la CLI. Un atacante podr\u00eda aprovechar esta vulnerabilidad autentic\u00e1ndose en el sistema y ejecutando un comando manipulado en el dispositivo afectado. Un exploit exitoso podr\u00eda permitir al atacante ejecutar comandos arbitrarios en el sistema operativo subyacente y elevar los privilegios a root. Para explotar con \u00e9xito esta vulnerabilidad, un atacante necesitar\u00eda al menos credenciales de invitado.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.0,\"impactScore\":6.0},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-250\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:11.7.0-406:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7A3D131-5E67-484E-93FA-BFF303019F38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:11.7.0-418:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12FFA6C7-9B30-4D17-8AB6-523776611524\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:11.7.1-006:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93F2A8D1-E9B1-4D01-B0EB-25B5E3A40B89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:11.7.1-020:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A13BA0C-9511-4522-BC82-702E0BE73C98\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:11.7.1-049:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2897D754-3B0B-4C18-8346-70CF2BE350A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:11.7.2-011:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40D30CE8-84FA-4D81-9996-C07FD757B6C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:11.8.0-414:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDF27FDC-ADC4-4C98-8A49-DAD2471F8301\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:11.8.1-023:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02072E0E-BC8C-4992-AB4D-BDE5829169A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:11.8.3-018:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67213820-8CF2-4C0E-8BE8-801FD01A97C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:11.8.3-021:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2281D49F-6C3F-4B09-AFB4-707253876591\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:12.0.1-268:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F6D5632-1951-4DB7-9B56-4D1947E09ECD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:12.0.3-007:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F221598-29D1-4B13-A427-315F93BD9865\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:12.5.1-011:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2D22A3C-16D5-4F61-AB44-111F4A4D9F5C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:12.5.2-007:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C79D794-0BA9-4A55-B843-FBF9B7374095\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:12.5.4-005:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBE6E431-7859-4E92-88C5-C85DADC8A5D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:12.5.5-004:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"495A2286-32A3-4F86-9D14-A1561FCE418A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:12.5.6-008:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09EA2D4E-2E11-40E9-ABA0-7643B6A78857\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:14.0.2-012:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"50BAC418-1CA1-4DB7-8B54-E4754A35F6E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:14.0.3-014:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3A1AE33-A44E-422C-BBF3-FEF0BD24081D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:14.0.4-005:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5A91305-1002-4717-AB81-A98C9C30CEA5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:14.0.5-007:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07433741-D7ED-4742-B449-64D23E002E75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:14.5.0-498:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"60A56580-C34C-4E5D-B053-9D02F8DD9681\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:14.5.1-016:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78109D4E-9FAA-4B5A-96E4-6D30D3458BFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:14.5.2-011:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"134FF12A-15FB-4D3D-BA99-479C8EEE534B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:15.0.0-322:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0FD96D2A-EE17-4AF6-B8DD-E25F4DCB9313\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:15.0.0-355:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCD55688-9581-4363-B8A0-2CC4080EA720\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:15.1.0-287:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1595FF1-D7A9-402C-B8D0-C2ED6E195637\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:cisco:secure_web_appliance_virtual_s1000v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09BCBB0F-88F1-4469-A7D4-DA8BCAF5470A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:cisco:secure_web_appliance_virtual_s100v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F88A369-E3A2-431A-AB71-CCD4F15E68EB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:cisco:secure_web_appliance_virtual_s300v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE8ED2A4-8E08-420D-B377-6D1F5AF675DC\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:cisco:secure_web_appliance_virtual_s600v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"780EA177-5623-4AFF-9316-D557BE2BD47D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_web_appliance_s196:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE1F2FAF-C64B-4AEB-8DE4-329C61B8D17F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_web_appliance_s396:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B5596058-16DB-46C0-82AC-D9BFC13F4126\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_web_appliance_s696:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62BEA59D-2AF1-4BDF-ACB3-450BED2E5AAB\"}]}]}],\"references\":[{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-priv-esc-7uHpZsCC\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-priv-esc-7uHpZsCC\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-20435\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-07-17T17:15:02.287832Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:h:cisco:secure_web_appliance:11.7.0-406:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:11.7.0-418:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:11.7.1-006:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:11.7.1-020:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:11.7.1-049:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:11.7.2-011:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:11.8.0-414:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:11.8.1-023:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:11.8.3-018:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:11.8.3-021:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:12.0.1-268:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:12.0.3-007:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:12.5.1-011:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:12.5.2-007:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:12.5.4-005:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:12.5.5-004:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:12.5.6-008:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:14.0.2-012:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:14.0.3-014:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:14.0.4-005:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:14.0.5-007:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:14.5.0-498:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:14.5.1-016:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:14.5.2-011:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:15.0.0-322:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:15.0.0-355:*:*:*:*:*:*:*\", \"cpe:2.3:h:cisco:secure_web_appliance:15.1.0-287:*:*:*:*:*:*:*\"], \"vendor\": \"cisco\", \"product\": \"secure_web_appliance\", \"versions\": [{\"status\": \"affected\", \"version\": \"11.7.0-406\"}, {\"status\": \"affected\", \"version\": \"11.7.0-418\"}, {\"status\": \"affected\", \"version\": \"11.7.1-006\"}, {\"status\": \"affected\", \"version\": \"11.7.1-020\"}, {\"status\": \"affected\", \"version\": \"11.7.1-049\"}, {\"status\": \"affected\", \"version\": \"11.7.2-011\"}, {\"status\": \"affected\", \"version\": \"11.8.0-414\"}, {\"status\": \"affected\", \"version\": \"11.8.1-023\"}, {\"status\": \"affected\", \"version\": \"11.8.3-018\"}, {\"status\": \"affected\", \"version\": \"11.8.3-021\"}, {\"status\": \"affected\", \"version\": \"12.0.1-268\"}, {\"status\": \"affected\", \"version\": \"12.0.3-007\"}, {\"status\": \"affected\", \"version\": \"12.5.1-011\"}, {\"status\": \"affected\", \"version\": \"12.5.2-007\"}, {\"status\": \"affected\", \"version\": \"12.5.4-005\"}, {\"status\": \"affected\", \"version\": \"12.5.5-004\"}, {\"status\": \"affected\", \"version\": \"12.5.6-008\"}, {\"status\": \"affected\", \"version\": \"14.0.2-012\"}, {\"status\": \"affected\", \"version\": \"14.0.3-014\"}, {\"status\": \"affected\", \"version\": \"14.0.4-005\"}, {\"status\": \"affected\", \"version\": \"14.0.5-007\"}, {\"status\": \"affected\", \"version\": \"14.5.0-498\"}, {\"status\": \"affected\", \"version\": \"14.5.1-016\"}, {\"status\": \"affected\", \"version\": \"14.5.2-011\"}, {\"status\": \"affected\", \"version\": \"15.0.0-322\"}, {\"status\": \"affected\", \"version\": \"15.0.0-355\"}, {\"status\": \"affected\", \"version\": \"15.1.0-287\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-17T17:27:54.214Z\"}}], \"cna\": {\"source\": {\"defects\": [\"CSCwj30015\"], \"advisory\": \"cisco-sa-swa-priv-esc-7uHpZsCC\", \"discovery\": \"EXTERNAL\"}, \"metrics\": [{\"format\": \"cvssV3_1\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 8.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"Cisco\", \"product\": \"Cisco Secure Web Appliance\", \"versions\": [{\"status\": \"affected\", \"version\": \"11.7.0-406\"}, {\"status\": \"affected\", \"version\": \"11.7.0-418\"}, {\"status\": \"affected\", \"version\": \"11.7.1-049\"}, {\"status\": \"affected\", \"version\": \"11.7.1-006\"}, {\"status\": \"affected\", \"version\": \"11.7.1-020\"}, {\"status\": \"affected\", \"version\": \"11.7.2-011\"}, {\"status\": \"affected\", \"version\": \"11.8.0-414\"}, {\"status\": \"affected\", \"version\": \"11.8.1-023\"}, {\"status\": \"affected\", \"version\": \"11.8.3-018\"}, {\"status\": \"affected\", \"version\": \"11.8.3-021\"}, {\"status\": \"affected\", \"version\": \"12.0.1-268\"}, {\"status\": \"affected\", \"version\": \"12.0.3-007\"}, {\"status\": \"affected\", \"version\": \"12.5.2-007\"}, {\"status\": \"affected\", \"version\": \"12.5.1-011\"}, {\"status\": \"affected\", \"version\": \"12.5.4-005\"}, {\"status\": \"affected\", \"version\": \"12.5.5-004\"}, {\"status\": \"affected\", \"version\": \"12.5.6-008\"}, {\"status\": \"affected\", \"version\": \"14.5.0-498\"}, {\"status\": \"affected\", \"version\": \"14.5.1-016\"}, {\"status\": \"affected\", \"version\": \"14.5.2-011\"}, {\"status\": \"affected\", \"version\": \"14.0.3-014\"}, {\"status\": \"affected\", \"version\": \"14.0.2-012\"}, {\"status\": \"affected\", \"version\": \"14.0.4-005\"}, {\"status\": \"affected\", \"version\": \"14.0.5-007\"}, {\"status\": \"affected\", \"version\": \"15.0.0-322\"}, {\"status\": \"affected\", \"version\": \"15.0.0-355\"}, {\"status\": \"affected\", \"version\": \"15.1.0-287\"}]}], \"exploits\": [{\"lang\": \"en\", \"value\": \"The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.\"}], \"references\": [{\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-priv-esc-7uHpZsCC\", \"name\": \"cisco-sa-swa-priv-esc-7uHpZsCC\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated, local attacker to execute arbitrary commands and elevate privileges to root.\\r\\n\\r This vulnerability is due to insufficient validation of user-supplied input for the CLI. An attacker could exploit this vulnerability by authenticating to the system and executing a crafted command on the affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system and elevate privileges to root. To successfully exploit this vulnerability, an attacker would need at least guest credentials.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"cwe\", \"cweId\": \"CWE-250\", \"description\": \"Execution with Unnecessary Privileges\"}]}], \"providerMetadata\": {\"orgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"shortName\": \"cisco\", \"dateUpdated\": \"2024-07-17T16:27:59.858Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-20435\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-07-17T17:28:04.667Z\", \"dateReserved\": \"2023-11-08T15:08:07.667Z\", \"assignerOrgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"datePublished\": \"2024-07-17T16:27:59.858Z\", \"assignerShortName\": \"cisco\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…