Action not permitted
Modal body text goes here.
Modal Title
Modal Body
WID-SEC-W-2024-1156
Vulnerability from csaf_certbund
Published
2024-05-15 22:00
Modified
2024-05-15 22:00
Summary
Mehrere Cisco Secure Produkte: Mehrere Schwachstellen ermöglichen Cross-Site Scripting
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Cisco Secure Client ist ein Sicherheits-Client, der auf Cisco AnyConnect, einer Remote-Access-Lösung und einer Reihe von modularen Sicherheitsdiensten aufbaut.
Cisco Security Manager ist eine Security Management Lösung. Er bietet Einblick in und Konfigurationsmöglichkeiten für Cisco Sicherheits- und Netzwerkkomponenten.
Cisco Secure Web Appliance (ehem. Cisco Web Security) bietet einen on-premise Web Proxy mit Schutz vor vielen Bedrohungen.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Cisco Secure Client, Cisco Security Manager (CSM) und Cisco Secure Web Appliance ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen.
Betroffene Betriebssysteme
- CISCO Appliance
{ document: { aggregate_severity: { text: "mittel", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Cisco Secure Client ist ein Sicherheits-Client, der auf Cisco AnyConnect, einer Remote-Access-Lösung und einer Reihe von modularen Sicherheitsdiensten aufbaut.\r\nCisco Security Manager ist eine Security Management Lösung. Er bietet Einblick in und Konfigurationsmöglichkeiten für Cisco Sicherheits- und Netzwerkkomponenten.\r\nCisco Secure Web Appliance (ehem. Cisco Web Security) bietet einen on-premise Web Proxy mit Schutz vor vielen Bedrohungen.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Cisco Secure Client, Cisco Security Manager (CSM) und Cisco Secure Web Appliance ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen.", title: "Angriff", }, { category: "general", text: "- CISCO Appliance", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-1156 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1156.json", }, { category: "self", summary: "WID-SEC-2024-1156 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1156", }, { category: "external", summary: "Cisco Security Advisories vom 2024-05-15", url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD", }, ], source_lang: "en-US", title: "Mehrere Cisco Secure Produkte: Mehrere Schwachstellen ermöglichen Cross-Site Scripting", tracking: { current_release_date: "2024-05-15T22:00:00.000+00:00", generator: { date: "2024-08-15T18:09:04.166+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2024-1156", initial_release_date: "2024-05-15T22:00:00.000+00:00", revision_history: [ { date: "2024-05-15T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Cisco Secure Client", product: { name: "Cisco Secure Client", product_id: "T034848", product_identification_helper: { cpe: "cpe:/a:cisco:secure_client:-", }, }, }, { category: "product_name", name: "Cisco Secure Web Appliance", product: { name: "Cisco Secure Web Appliance", product_id: "T034850", product_identification_helper: { cpe: "cpe:/h:cisco:secure_web_appliance:-", }, }, }, { category: "product_name", name: "Cisco Security Manager (CSM)", product: { name: "Cisco Security Manager (CSM)", product_id: "T034849", product_identification_helper: { cpe: "cpe:/a:cisco:security_manager:-", }, }, }, ], category: "vendor", name: "Cisco", }, ], }, vulnerabilities: [ { cve: "CVE-2024-20256", notes: [ { category: "description", text: "In Cisco Secure Client, Cisco Security Manager (CSM) und Cisco Secure Web Appliance existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgemäß überprüft, bevor sie an den Benutzer zurückgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T034848", "T034849", "T034850", ], }, release_date: "2024-05-15T22:00:00.000+00:00", title: "CVE-2024-20256", }, { cve: "CVE-2024-20257", notes: [ { category: "description", text: "In Cisco Secure Client, Cisco Security Manager (CSM) und Cisco Secure Web Appliance existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgemäß überprüft, bevor sie an den Benutzer zurückgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T034848", "T034849", "T034850", ], }, release_date: "2024-05-15T22:00:00.000+00:00", title: "CVE-2024-20257", }, { cve: "CVE-2024-20258", notes: [ { category: "description", text: "In Cisco Secure Client, Cisco Security Manager (CSM) und Cisco Secure Web Appliance existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgemäß überprüft, bevor sie an den Benutzer zurückgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T034848", "T034849", "T034850", ], }, release_date: "2024-05-15T22:00:00.000+00:00", title: "CVE-2024-20258", }, { cve: "CVE-2024-20383", notes: [ { category: "description", text: "In Cisco Secure Client, Cisco Security Manager (CSM) und Cisco Secure Web Appliance existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgemäß überprüft, bevor sie an den Benutzer zurückgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T034848", "T034849", "T034850", ], }, release_date: "2024-05-15T22:00:00.000+00:00", title: "CVE-2024-20383", }, ], }
cve-2024-20256
Vulnerability from cvelistv5
Published
2024-05-15 17:56
Modified
2024-08-15 15:29
Severity ?
EPSS score ?
Summary
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Web Appliance could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface.
This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | Cisco | Cisco Secure Web Appliance |
Version: 11.7.0-406 Version: 11.7.0-418 Version: 11.7.1-049 Version: 11.7.1-006 Version: 11.7.1-020 Version: 11.7.2-011 Version: 11.8.0-414 Version: 11.8.1-023 Version: 11.8.3-018 Version: 11.8.3-021 Version: 12.0.1-268 Version: 12.0.3-007 Version: 12.5.2-007 Version: 12.5.1-011 Version: 12.5.4-005 Version: 12.5.5-004 Version: 12.5.6-008 Version: 14.5.0-498 Version: 14.5.1-016 Version: 14.0.3-014 Version: 14.0.2-012 Version: 14.0.4-005 Version: 15.0.0-322 |
||||||
|
|||||||||
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-01T21:52:31.613Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", tags: [ "x_transferred", ], url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2024-20256", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-05-15T18:47:15.332751Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-08-15T15:29:20.282Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "Cisco Secure Web Appliance", vendor: "Cisco", versions: [ { status: "affected", version: "11.7.0-406", }, { status: "affected", version: "11.7.0-418", }, { status: "affected", version: "11.7.1-049", }, { status: "affected", version: "11.7.1-006", }, { status: "affected", version: "11.7.1-020", }, { status: "affected", version: "11.7.2-011", }, { status: "affected", version: "11.8.0-414", }, { status: "affected", version: "11.8.1-023", }, { status: "affected", version: "11.8.3-018", }, { status: "affected", version: "11.8.3-021", }, { status: "affected", version: "12.0.1-268", }, { status: "affected", version: "12.0.3-007", }, { status: "affected", version: "12.5.2-007", }, { status: "affected", version: "12.5.1-011", }, { status: "affected", version: "12.5.4-005", }, { status: "affected", version: "12.5.5-004", }, { status: "affected", version: "12.5.6-008", }, { status: "affected", version: "14.5.0-498", }, { status: "affected", version: "14.5.1-016", }, { status: "affected", version: "14.0.3-014", }, { status: "affected", version: "14.0.2-012", }, { status: "affected", version: "14.0.4-005", }, { status: "affected", version: "15.0.0-322", }, ], }, { product: "Cisco Secure Email and Web Manager", vendor: "Cisco", versions: [ { status: "affected", version: "9.0.0-087", }, { status: "affected", version: "11.0.0-115", }, { status: "affected", version: "11.0.1-161", }, { status: "affected", version: "11.5.1-105", }, { status: "affected", version: "12.0.0-452", }, { status: "affected", version: "12.0.1-011", }, { status: "affected", version: "12.5.0-636", }, { status: "affected", version: "12.5.0-658", }, { status: "affected", version: "12.5.0-678", }, { status: "affected", version: "12.5.0-670", }, { status: "affected", version: "13.0.0-277", }, { status: "affected", version: "13.6.2-078", }, { status: "affected", version: "13.8.1-068", }, { status: "affected", version: "13.8.1-074", }, { status: "affected", version: "13.8.1-108", }, { status: "affected", version: "12.8.1-002", }, { status: "affected", version: "12.8.1-021", }, { status: "affected", version: "14.0.0-404", }, { status: "affected", version: "14.1.0-223", }, { status: "affected", version: "14.1.0-227", }, { status: "affected", version: "14.2.0-212", }, { status: "affected", version: "14.2.0-224", }, { status: "affected", version: "14.2.1-020", }, { status: "affected", version: "14.3.0-120", }, { status: "affected", version: "15.0.0-334", }, ], }, ], descriptions: [ { lang: "en", value: "A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Web Appliance could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface.\r\n\rThis vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.", }, ], exploits: [ { lang: "en", value: "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, format: "cvssV3_1", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", lang: "en", type: "cwe", }, ], }, ], providerMetadata: { dateUpdated: "2024-05-15T17:56:38.074Z", orgId: "d1c1063e-7a18-46af-9102-31f8928bc633", shortName: "cisco", }, references: [ { name: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD", }, ], source: { advisory: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", defects: [ "CSCwe88788", "CSCwe91887", ], discovery: "INTERNAL", }, }, }, cveMetadata: { assignerOrgId: "d1c1063e-7a18-46af-9102-31f8928bc633", assignerShortName: "cisco", cveId: "CVE-2024-20256", datePublished: "2024-05-15T17:56:38.074Z", dateReserved: "2023-11-08T15:08:07.623Z", dateUpdated: "2024-08-15T15:29:20.282Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-20257
Vulnerability from cvelistv5
Published
2024-05-15 17:58
Modified
2024-08-01 21:52
Severity ?
EPSS score ?
Summary
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface.r
This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Cisco | Cisco Secure Email |
Version: 11.0.3-238 Version: 11.1.0-069 Version: 11.1.0-131 Version: 11.1.0-128 Version: 12.0.0-419 Version: 12.1.0-071 Version: 12.1.0-087 Version: 12.1.0-089 Version: 13.0.0-392 Version: 13.0.5-007 Version: 13.5.1-277 Version: 13.5.4-038 Version: 12.5.0-066 Version: 12.5.4-041 Version: 12.5.3-041 Version: 14.0.0-698 Version: 14.2.0-620 Version: 14.2.1-020 Version: 14.3.0-032 Version: 15.0.0-104 Version: 15.0.1-030 Version: 15.5.0-048 |
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2024-20257", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-05-16T16:02:05.959708Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-06-04T17:40:16.569Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-01T21:52:31.675Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", tags: [ "x_transferred", ], url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Cisco Secure Email", vendor: "Cisco", versions: [ { status: "affected", version: "11.0.3-238", }, { status: "affected", version: "11.1.0-069", }, { status: "affected", version: "11.1.0-131", }, { status: "affected", version: "11.1.0-128", }, { status: "affected", version: "12.0.0-419", }, { status: "affected", version: "12.1.0-071", }, { status: "affected", version: "12.1.0-087", }, { status: "affected", version: "12.1.0-089", }, { status: "affected", version: "13.0.0-392", }, { status: "affected", version: "13.0.5-007", }, { status: "affected", version: "13.5.1-277", }, { status: "affected", version: "13.5.4-038", }, { status: "affected", version: "12.5.0-066", }, { status: "affected", version: "12.5.4-041", }, { status: "affected", version: "12.5.3-041", }, { status: "affected", version: "14.0.0-698", }, { status: "affected", version: "14.2.0-620", }, { status: "affected", version: "14.2.1-020", }, { status: "affected", version: "14.3.0-032", }, { status: "affected", version: "15.0.0-104", }, { status: "affected", version: "15.0.1-030", }, { status: "affected", version: "15.5.0-048", }, ], }, ], descriptions: [ { lang: "en", value: "A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface.r\n\r This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.", }, ], exploits: [ { lang: "en", value: "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, format: "cvssV3_1", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", lang: "en", type: "cwe", }, ], }, ], providerMetadata: { dateUpdated: "2024-05-15T17:58:59.579Z", orgId: "d1c1063e-7a18-46af-9102-31f8928bc633", shortName: "cisco", }, references: [ { name: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD", }, ], source: { advisory: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", defects: [ "CSCwf73258", ], discovery: "INTERNAL", }, }, }, cveMetadata: { assignerOrgId: "d1c1063e-7a18-46af-9102-31f8928bc633", assignerShortName: "cisco", cveId: "CVE-2024-20257", datePublished: "2024-05-15T17:58:59.579Z", dateReserved: "2023-11-08T15:08:07.623Z", dateUpdated: "2024-08-01T21:52:31.675Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-20258
Vulnerability from cvelistv5
Published
2024-05-15 17:32
Modified
2024-08-01 21:52
Severity ?
EPSS score ?
Summary
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Email Gateway could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface.
This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | Cisco | Cisco Secure Email |
Version: 11.0.3-238 Version: 11.1.0-069 Version: 11.1.0-131 Version: 11.1.0-128 Version: 12.0.0-419 Version: 12.1.0-071 Version: 12.1.0-087 Version: 12.1.0-089 Version: 13.0.0-392 Version: 13.0.5-007 Version: 13.5.1-277 Version: 13.5.4-038 Version: 12.5.0-066 Version: 12.5.4-041 Version: 12.5.3-041 Version: 14.0.0-698 Version: 14.2.0-620 Version: 14.2.1-020 Version: 14.3.0-032 Version: 15.0.0-104 Version: 15.0.1-030 Version: 15.5.0-048 |
||||||
|
|||||||||
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:a:cisco:secure_email:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "secure_email", vendor: "cisco", versions: [ { lessThanOrEqual: "15.5.0-048", status: "affected", version: "11.0.3-238", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:a:cisco:secure_email_and_web_manager:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "secure_email_and_web_manager", vendor: "cisco", versions: [ { lessThanOrEqual: "15.0.0-334", status: "affected", version: "9.0.0-087", versionType: "custom", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-20258", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-05-16T17:18:20.336833Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-06-04T17:40:25.043Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-01T21:52:31.784Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", tags: [ "x_transferred", ], url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Cisco Secure Email", vendor: "Cisco", versions: [ { status: "affected", version: "11.0.3-238", }, { status: "affected", version: "11.1.0-069", }, { status: "affected", version: "11.1.0-131", }, { status: "affected", version: "11.1.0-128", }, { status: "affected", version: "12.0.0-419", }, { status: "affected", version: "12.1.0-071", }, { status: "affected", version: "12.1.0-087", }, { status: "affected", version: "12.1.0-089", }, { status: "affected", version: "13.0.0-392", }, { status: "affected", version: "13.0.5-007", }, { status: "affected", version: "13.5.1-277", }, { status: "affected", version: "13.5.4-038", }, { status: "affected", version: "12.5.0-066", }, { status: "affected", version: "12.5.4-041", }, { status: "affected", version: "12.5.3-041", }, { status: "affected", version: "14.0.0-698", }, { status: "affected", version: "14.2.0-620", }, { status: "affected", version: "14.2.1-020", }, { status: "affected", version: "14.3.0-032", }, { status: "affected", version: "15.0.0-104", }, { status: "affected", version: "15.0.1-030", }, { status: "affected", version: "15.5.0-048", }, ], }, { product: "Cisco Secure Email and Web Manager", vendor: "Cisco", versions: [ { status: "affected", version: "9.0.0-087", }, { status: "affected", version: "11.0.0-115", }, { status: "affected", version: "11.0.1-161", }, { status: "affected", version: "11.5.1-105", }, { status: "affected", version: "12.0.0-452", }, { status: "affected", version: "12.0.1-011", }, { status: "affected", version: "12.5.0-636", }, { status: "affected", version: "12.5.0-658", }, { status: "affected", version: "12.5.0-678", }, { status: "affected", version: "12.5.0-670", }, { status: "affected", version: "13.0.0-277", }, { status: "affected", version: "13.6.2-078", }, { status: "affected", version: "13.8.1-068", }, { status: "affected", version: "13.8.1-074", }, { status: "affected", version: "13.8.1-108", }, { status: "affected", version: "12.8.1-002", }, { status: "affected", version: "12.8.1-021", }, { status: "affected", version: "14.0.0-404", }, { status: "affected", version: "14.1.0-223", }, { status: "affected", version: "14.1.0-227", }, { status: "affected", version: "14.2.0-212", }, { status: "affected", version: "14.2.0-224", }, { status: "affected", version: "14.2.1-020", }, { status: "affected", version: "14.3.0-120", }, { status: "affected", version: "15.0.0-334", }, ], }, ], descriptions: [ { lang: "en", value: "A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Email Gateway could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface.\r\n\r This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.", }, ], exploits: [ { lang: "en", value: "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, format: "cvssV3_1", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", lang: "en", type: "cwe", }, ], }, ], providerMetadata: { dateUpdated: "2024-05-15T17:32:16.125Z", orgId: "d1c1063e-7a18-46af-9102-31f8928bc633", shortName: "cisco", }, references: [ { name: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD", }, ], source: { advisory: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", defects: [ "CSCwf84882", "CSCwj12619", "CSCwf93368", ], discovery: "INTERNAL", }, }, }, cveMetadata: { assignerOrgId: "d1c1063e-7a18-46af-9102-31f8928bc633", assignerShortName: "cisco", cveId: "CVE-2024-20258", datePublished: "2024-05-15T17:32:16.125Z", dateReserved: "2023-11-08T15:08:07.623Z", dateUpdated: "2024-08-01T21:52:31.784Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-20383
Vulnerability from cvelistv5
Published
2024-05-15 17:59
Modified
2024-08-01 21:59
Severity ?
EPSS score ?
Summary
A vulnerability in the Cisco Crosswork NSO CLI and the ConfD CLI could allow an authenticated, low-privileged, local attacker to elevate privileges to root on the underlying operating system.
The vulnerability is due to an incorrect privilege assignment when specific CLI commands are used. An attacker could exploit this vulnerability by executing an affected CLI command. A successful exploit could allow the attacker to elevate privileges to root on the underlying operating system.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Cisco | Cisco Secure Email and Web Manager |
Version: 9.0.0-087 Version: 11.0.0-115 Version: 11.0.1-161 Version: 11.5.1-105 Version: 12.0.0-452 Version: 12.0.1-011 Version: 12.5.0-636 Version: 12.5.0-658 Version: 12.5.0-678 Version: 12.5.0-670 Version: 13.0.0-277 Version: 13.6.2-078 Version: 13.8.1-068 Version: 13.8.1-074 Version: 13.8.1-108 Version: 12.8.1-002 Version: 12.8.1-021 Version: 14.0.0-404 Version: 14.1.0-223 Version: 14.1.0-227 Version: 14.2.0-212 Version: 14.2.0-224 Version: 14.2.1-020 Version: 14.3.0-120 Version: 15.0.0-334 |
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2024-20383", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-05-16T18:50:56.053580Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-06-04T17:40:43.042Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-01T21:59:42.314Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", tags: [ "x_transferred", ], url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Cisco Secure Email and Web Manager", vendor: "Cisco", versions: [ { status: "affected", version: "9.0.0-087", }, { status: "affected", version: "11.0.0-115", }, { status: "affected", version: "11.0.1-161", }, { status: "affected", version: "11.5.1-105", }, { status: "affected", version: "12.0.0-452", }, { status: "affected", version: "12.0.1-011", }, { status: "affected", version: "12.5.0-636", }, { status: "affected", version: "12.5.0-658", }, { status: "affected", version: "12.5.0-678", }, { status: "affected", version: "12.5.0-670", }, { status: "affected", version: "13.0.0-277", }, { status: "affected", version: "13.6.2-078", }, { status: "affected", version: "13.8.1-068", }, { status: "affected", version: "13.8.1-074", }, { status: "affected", version: "13.8.1-108", }, { status: "affected", version: "12.8.1-002", }, { status: "affected", version: "12.8.1-021", }, { status: "affected", version: "14.0.0-404", }, { status: "affected", version: "14.1.0-223", }, { status: "affected", version: "14.1.0-227", }, { status: "affected", version: "14.2.0-212", }, { status: "affected", version: "14.2.0-224", }, { status: "affected", version: "14.2.1-020", }, { status: "affected", version: "14.3.0-120", }, { status: "affected", version: "15.0.0-334", }, ], }, ], descriptions: [ { lang: "en", value: "A vulnerability in the Cisco Crosswork NSO CLI and the ConfD CLI could allow an authenticated, low-privileged, local attacker to elevate privileges to root on the underlying operating system.\r\n\r The vulnerability is due to an incorrect privilege assignment when specific CLI commands are used. An attacker could exploit this vulnerability by executing an affected CLI command. A successful exploit could allow the attacker to elevate privileges to root on the underlying operating system.", }, ], exploits: [ { lang: "en", value: "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, format: "cvssV3_1", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", lang: "en", type: "cwe", }, ], }, ], providerMetadata: { dateUpdated: "2024-05-15T18:13:46.829Z", orgId: "d1c1063e-7a18-46af-9102-31f8928bc633", shortName: "cisco", }, references: [ { name: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD", }, ], source: { advisory: "cisco-sa-esa-sma-wsa-xss-bgG5WHOD", defects: [ "CSCwi59618", ], discovery: "EXTERNAL", }, }, }, cveMetadata: { assignerOrgId: "d1c1063e-7a18-46af-9102-31f8928bc633", assignerShortName: "cisco", cveId: "CVE-2024-20383", datePublished: "2024-05-15T17:59:49.921Z", dateReserved: "2023-11-08T15:08:07.658Z", dateUpdated: "2024-08-01T21:59:42.314Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.