Vulnerability-Lookup

BDU:2025-11707

Vulnerability from fstec - Published: 04.12.2024

Title

Уязвимость загрузчика операционной системы Cisco NX-OS коммутаторов Cisco Nexus и Cisco UCS Fabric Interconnects, позволяющая нарушителю выполнить произвольные команды

Description

Уязвимость загрузчика операционной системы Cisco NX-OS коммутаторов Cisco Nexus и Cisco UCS Fabric Interconnects связана с ошибками разграничения доступа. Эксплуатация уязвимости может позволить нарушителю выполнить произвольные команды

Severity ?


                    
                      AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

Vendor

Cisco Systems Inc.

Software Name

Cisco MDS 9000 Series, Cisco Nexus 3000 Series, Cisco Nexus 9000 Series, Nexus 7000, Cisco UCS Fabric Interconnects, Cisco UCS 6400, UCS 6500 Series Fabric Interconnects

Software Version

- (Cisco MDS 9000 Series), - (Cisco Nexus 3000 Series), - (Cisco Nexus 9000 Series), - (Nexus 7000), - (Cisco UCS Fabric Interconnects), - (Cisco UCS 6400), - (UCS 6500 Series Fabric Interconnects)

Possible Mitigations

Использование рекомендаций производителя: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL

Reference

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL

CWE

CWE-284

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:L/Au:N/C:P/I:C/A:N",
  "CVSS 3.0": "AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Cisco Systems Inc.",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Cisco MDS 9000 Series), - (Cisco Nexus 3000 Series), - (Cisco Nexus 9000 Series), - (Nexus 7000), - (Cisco UCS Fabric Interconnects), - (Cisco UCS 6400), - (UCS 6500 Series Fabric Interconnects)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "04.12.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "26.09.2025",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "26.09.2025",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-11707",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-20397",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Cisco MDS 9000 Series, Cisco Nexus 3000 Series, Cisco Nexus 9000 Series, Nexus 7000, Cisco UCS Fabric Interconnects, Cisco UCS 6400, UCS 6500 Series Fabric Interconnects",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Cisco Systems Inc. NX-OS 9.2(1) , Cisco Systems Inc. NX-OS 7.0(3)F3(1) , Cisco Systems Inc. NX-OS 7.0(3)F3(2) , Cisco Systems Inc. NX-OS 7.0(3)F3(3) , Cisco Systems Inc. NX-OS 7.0(3)F3(3a) , Cisco Systems Inc. NX-OS 7.0(3)F3(4) , Cisco Systems Inc. NX-OS 7.0(3)F3(3c) , Cisco Systems Inc. NX-OS 7.0(3)F3(5) , Cisco Systems Inc. NX-OS 7.0(3)I4(1) , Cisco Systems Inc. NX-OS 7.0(3)I4(2) , Cisco Systems Inc. NX-OS 7.0(3)I4(3) , Cisco Systems Inc. NX-OS 7.0(3)I4(4) , Cisco Systems Inc. NX-OS 7.0(3)I4(5) , Cisco Systems Inc. NX-OS 7.0(3)I4(6) , Cisco Systems Inc. NX-OS 7.0(3)I4(7) , Cisco Systems Inc. NX-OS 7.0(3)I4(8) , Cisco Systems Inc. NX-OS 7.0(3)I4(8a) , Cisco Systems Inc. NX-OS 7.0(3)I4(8b) , Cisco Systems Inc. NX-OS 7.0(3)I4(8z) , Cisco Systems Inc. NX-OS 7.0(3)I7(5a) , Cisco Systems Inc. NX-OS 7.0(3)I5(1) , Cisco Systems Inc. NX-OS 7.0(3)I5(2) , Cisco Systems Inc. NX-OS 7.0(3)I6(1) , Cisco Systems Inc. NX-OS 7.0(3)I6(2) , Cisco Systems Inc. NX-OS 7.0(3)I7(1) , Cisco Systems Inc. NX-OS 7.0(3)I7(2) , Cisco Systems Inc. NX-OS 7.0(3)I7(3) , Cisco Systems Inc. NX-OS 7.0(3)I7(4) , Cisco Systems Inc. NX-OS 7.0(3)I7(5) , Cisco Systems Inc. NX-OS 7.3(0)D1(1) , Cisco Systems Inc. NX-OS 7.3(0)DX(1) , Cisco Systems Inc. NX-OS 7.3(0)DY(1) , Cisco Systems Inc. NX-OS 7.3(1)D1(1) , Cisco Systems Inc. NX-OS 7.3(1)DY(1) , Cisco Systems Inc. NX-OS 7.3(2)D1(1) , Cisco Systems Inc. NX-OS 7.3(2)D1(2) , Cisco Systems Inc. NX-OS 7.3(2)D1(3) , Cisco Systems Inc. NX-OS 7.3(2)D1(3a) , Cisco Systems Inc. NX-OS 8.2(1) , Cisco Systems Inc. NX-OS 8.2(2) , Cisco Systems Inc. NX-OS 9.3(10) , Cisco Systems Inc. NX-OS 9.3(11) , Cisco Systems Inc. NX-OS 9.3(12) , Cisco Systems Inc. NX-OS 6.0(2)a8(1) , Cisco Systems Inc. NX-OS 6.0(2)a8(2) , Cisco Systems Inc. NX-OS 6.0(2)a8(3) , Cisco Systems Inc. NX-OS 6.0(2)a8(4) , Cisco Systems Inc. NX-OS 6.0(2)a8(4a) , Cisco Systems Inc. NX-OS 6.0(2)a8(5) , Cisco Systems Inc. NX-OS 6.0(2)a8(6) , Cisco Systems Inc. NX-OS 6.0(2)a8(7) , Cisco Systems Inc. NX-OS 6.0(2)a8(7a) , Cisco Systems Inc. NX-OS 6.0(2)a8(7b) , Cisco Systems Inc. NX-OS 6.0(2)a8(8) , Cisco Systems Inc. NX-OS 6.0(2)a8(9) , Cisco Systems Inc. NX-OS 6.0(2)a8(10) , Cisco Systems Inc. NX-OS 6.0(2)a8(10a) , Cisco Systems Inc. NX-OS 6.0(2)a8(11) , Cisco Systems Inc. NX-OS 6.0(2)a8(11a) , Cisco Systems Inc. NX-OS 6.0(2)a8(11b) , Cisco Systems Inc. NX-OS 7.0(3)i4(9) , Cisco Systems Inc. NX-OS 7.0(3)i7(6) , Cisco Systems Inc. NX-OS 7.0(3)i7(7) , Cisco Systems Inc. NX-OS 7.0(3)i7(8) , Cisco Systems Inc. NX-OS 7.0(3)i7(9) , Cisco Systems Inc. NX-OS 7.0(3)i7(10) , Cisco Systems Inc. NX-OS 9.2(2) , Cisco Systems Inc. NX-OS 9.2(2t) , Cisco Systems Inc. NX-OS 9.2(2v) , Cisco Systems Inc. NX-OS 9.2(3) , Cisco Systems Inc. NX-OS 9.2(4) , Cisco Systems Inc. NX-OS 9.3(1) , Cisco Systems Inc. NX-OS 9.3(2) , Cisco Systems Inc. NX-OS 9.3(3) , Cisco Systems Inc. NX-OS 9.3(4) , Cisco Systems Inc. NX-OS 9.3(5) , Cisco Systems Inc. NX-OS 9.3(6) , Cisco Systems Inc. NX-OS 9.3(7) , Cisco Systems Inc. NX-OS 9.3(7a) , Cisco Systems Inc. NX-OS 9.3(8) , Cisco Systems Inc. NX-OS 9.3(9) , Cisco Systems Inc. NX-OS 10.1(1) , Cisco Systems Inc. NX-OS 10.1(2) , Cisco Systems Inc. NX-OS 10.1(2t) , Cisco Systems Inc. NX-OS 10.2(1) , Cisco Systems Inc. NX-OS 10.2(1q) , Cisco Systems Inc. NX-OS 10.2(2) , Cisco Systems Inc. NX-OS 10.2(3) , Cisco Systems Inc. NX-OS 10.2(3t) , Cisco Systems Inc. NX-OS 10.2(3v) , Cisco Systems Inc. NX-OS 10.2(4) , Cisco Systems Inc. NX-OS 10.2(5) , Cisco Systems Inc. NX-OS 10.2(6) , Cisco Systems Inc. NX-OS 10.3(1) , Cisco Systems Inc. NX-OS 10.3(2) , Cisco Systems Inc. NX-OS 10.3(3) , Cisco Systems Inc. NX-OS 10.3(99w) , Cisco Systems Inc. NX-OS 10.3(99x) , Cisco Systems Inc. NX-OS 10.4(1) , Cisco Systems Inc. NX-OS 7.0(3)I4(1t) , Cisco Systems Inc. NX-OS 7.0(3)I4(6t) , Cisco Systems Inc. NX-OS 7.0(3)I5(3) , Cisco Systems Inc. NX-OS 7.0(3)I5(3a) , Cisco Systems Inc. NX-OS 7.0(3)I5(3b) , Cisco Systems Inc. NX-OS 7.0(3)I7(3z) , Cisco Systems Inc. NX-OS 7.0(3)I7(6z) , Cisco Systems Inc. NX-OS 7.0(3)I7(9w) , Cisco Systems Inc. NX-OS 7.3(2)D1(1d) , Cisco Systems Inc. NX-OS 8.1(1) , Cisco Systems Inc. NX-OS 8.1(2) , Cisco Systems Inc. NX-OS 8.1(2a) , Cisco Systems Inc. NX-OS 8.1(1a) , Cisco Systems Inc. NX-OS 8.1(1b) , Cisco Systems Inc. NX-OS 8.2(3) , Cisco Systems Inc. NX-OS 8.2(4) , Cisco Systems Inc. NX-OS 8.2(5) , Cisco Systems Inc. NX-OS 8.2(6) , Cisco Systems Inc. NX-OS 8.2(7) , Cisco Systems Inc. NX-OS 8.2(7a) , Cisco Systems Inc. NX-OS 8.2(8) , Cisco Systems Inc. NX-OS 8.2(9) , Cisco Systems Inc. NX-OS 8.2(10) , Cisco Systems Inc. NX-OS 8.2(11) , Cisco Systems Inc. NX-OS 8.3(1) , Cisco Systems Inc. NX-OS 8.3(2) , Cisco Systems Inc. NX-OS 9.2(3y) , Cisco Systems Inc. NX-OS 9.2(1a) , Cisco Systems Inc. NX-OS 7.3(3)D1(1) , Cisco Systems Inc. NX-OS 7.0(3)IA7(1) , Cisco Systems Inc. NX-OS 7.0(3)IA7(2) , Cisco Systems Inc. NX-OS 7.0(3)IC4(4) , Cisco Systems Inc. NX-OS 7.0(3)IM7(2) , Cisco Systems Inc. NX-OS 7.3(4)D1(1) , Cisco Systems Inc. NX-OS 8.4(1) , Cisco Systems Inc. NX-OS 8.4(1a) , Cisco Systems Inc. NX-OS 8.4(2) , Cisco Systems Inc. NX-OS 8.4(2a) , Cisco Systems Inc. NX-OS 8.4(3) , Cisco Systems Inc. NX-OS 8.4(2b) , Cisco Systems Inc. NX-OS 8.4(4) , Cisco Systems Inc. NX-OS 8.4(2c) , Cisco Systems Inc. NX-OS 8.4(4a) , Cisco Systems Inc. NX-OS 8.4(5) , Cisco Systems Inc. NX-OS 8.4(2d) , Cisco Systems Inc. NX-OS 8.4(6) , Cisco Systems Inc. NX-OS 8.4(2e) , Cisco Systems Inc. NX-OS 8.4(6a) , Cisco Systems Inc. NX-OS 8.4(7) , Cisco Systems Inc. NX-OS 8.4(2f) , Cisco Systems Inc. NX-OS 8.4(8) , Cisco Systems Inc. NX-OS 8.4(9) , Cisco Systems Inc. NX-OS 9.3(1z) , Cisco Systems Inc. NX-OS 9.3(5w) , Cisco Systems Inc. NX-OS 9.3(7k) , Cisco Systems Inc. NX-OS 9.3(2a) , Cisco Systems Inc. NX-OS 9.3(13) , Cisco Systems Inc. NX-OS 7.3(5)D1(1) , Cisco Systems Inc. NX-OS 7.3(6)D1(1) , Cisco Systems Inc. NX-OS 7.3(7)D1(1) , Cisco Systems Inc. NX-OS 8.5(1) , Cisco Systems Inc. NX-OS 7.3(8)D1(1) , Cisco Systems Inc. NX-OS 10.2(2a) , Cisco Systems Inc. NX-OS 10.2(7) , Cisco Systems Inc. NX-OS 7.3(9)D1(1) , Cisco Systems Inc. NX-OS 10.3(3w) , Cisco Systems Inc. NX-OS 10.3(3o) , Cisco Systems Inc. NX-OS 10.3(4a) , Cisco Systems Inc. NX-OS 10.3(3p) , Cisco Systems Inc. NX-OS 10.3(4) , Cisco Systems Inc. NX-OS 10.3(3q) , Cisco Systems Inc. NX-OS 10.3(3x) , Cisco Systems Inc. NX-OS 10.3(5) , Cisco Systems Inc. NX-OS 9.4(1) , Cisco Systems Inc. NX-OS 9.4(1a) , Cisco Systems Inc. NX-OS 10.4(2) , Cisco Systems Inc. NX-OS 10.3(4g) , Cisco Systems Inc. NX-OS 10.3(3r) , Cisco Systems Inc. NX-OS 10.4(3) , Cisco Systems Inc. NX-OS ACI Mode 16.0(2h) , Cisco Systems Inc. NX-OS ACI Mode 16.0(2j) , Cisco Systems Inc. NX-OS ACI Mode 16.0(3d) , Cisco Systems Inc. NX-OS ACI Mode 16.0(3e) , Cisco Systems Inc. NX-OS ACI Mode 16.0(4c) , Cisco Systems Inc. NX-OS ACI Mode 16.0(5h) , Cisco Systems Inc. NX-OS ACI Mode 16.0(3g) , Cisco Systems Inc. NX-OS ACI Mode 16.0(5j) , Cisco Systems Inc. NX-OS 9.3(14) , Cisco Systems Inc. NX-OS 10.2(8) , Cisco Systems Inc. NX-OS 10.3(6) , Cisco Systems Inc. NX-OS 10.3(4h) , Cisco Systems Inc. NX-OS 10.4(4) , Cisco Systems Inc. NX-OS 10.5(1) , Cisco Systems Inc. NX-OS ACI Mode 13.2(1l) , Cisco Systems Inc. NX-OS ACI Mode 13.2(1m) , Cisco Systems Inc. NX-OS ACI Mode 13.2(2l) , Cisco Systems Inc. NX-OS ACI Mode 13.2(2o) , Cisco Systems Inc. NX-OS ACI Mode 13.2(3i) , Cisco Systems Inc. NX-OS ACI Mode 13.2(3n) , Cisco Systems Inc. NX-OS ACI Mode 13.2(3o) , Cisco Systems Inc. NX-OS ACI Mode 13.2(3r) , Cisco Systems Inc. NX-OS ACI Mode 13.2(4d) , Cisco Systems Inc. NX-OS ACI Mode 13.2(4e) , Cisco Systems Inc. NX-OS ACI Mode 13.2(3j) , Cisco Systems Inc. NX-OS ACI Mode 13.2(3s) , Cisco Systems Inc. NX-OS ACI Mode 13.2(5d) , Cisco Systems Inc. NX-OS ACI Mode 13.2(5e) , Cisco Systems Inc. NX-OS ACI Mode 13.2(5f) , Cisco Systems Inc. NX-OS ACI Mode 13.2(6i) , Cisco Systems Inc. NX-OS ACI Mode 13.2(41d) , Cisco Systems Inc. NX-OS ACI Mode 13.2(7f) , Cisco Systems Inc. NX-OS ACI Mode 13.2(7k) , Cisco Systems Inc. NX-OS ACI Mode 13.2(9b) , Cisco Systems Inc. NX-OS ACI Mode 13.2(8d) , Cisco Systems Inc. NX-OS ACI Mode 13.2(9f) , Cisco Systems Inc. NX-OS ACI Mode 13.2(9h) , Cisco Systems Inc. NX-OS ACI Mode 13.2(10e) , Cisco Systems Inc. NX-OS ACI Mode 13.2(10f) , Cisco Systems Inc. NX-OS ACI Mode 13.2(10g) , Cisco Systems Inc. NX-OS ACI Mode 14.0(1h) , Cisco Systems Inc. NX-OS ACI Mode 14.0(2c) , Cisco Systems Inc. NX-OS ACI Mode 14.0(3d) , Cisco Systems Inc. NX-OS ACI Mode 14.0(3c) , Cisco Systems Inc. NX-OS ACI Mode 14.1(1i) , Cisco Systems Inc. NX-OS ACI Mode 14.1(1j) , Cisco Systems Inc. NX-OS ACI Mode 14.1(1k) , Cisco Systems Inc. NX-OS ACI Mode 14.1(1l) , Cisco Systems Inc. NX-OS ACI Mode 14.1(2g) , Cisco Systems Inc. NX-OS ACI Mode 14.1(2m) , Cisco Systems Inc. NX-OS ACI Mode 14.1(2o) , Cisco Systems Inc. NX-OS ACI Mode 14.1(2s) , Cisco Systems Inc. NX-OS ACI Mode 14.1(2u) , Cisco Systems Inc. NX-OS ACI Mode 14.1(2w) , Cisco Systems Inc. NX-OS ACI Mode 14.1(2x) , Cisco Systems Inc. NX-OS ACI Mode 14.2(1i) , Cisco Systems Inc. NX-OS ACI Mode 14.2(1j) , Cisco Systems Inc. NX-OS ACI Mode 14.2(1l) , Cisco Systems Inc. NX-OS ACI Mode 14.2(2e) , Cisco Systems Inc. NX-OS ACI Mode 14.2(2f) , Cisco Systems Inc. NX-OS ACI Mode 14.2(2g) , Cisco Systems Inc. NX-OS ACI Mode 14.2(3j) , Cisco Systems Inc. NX-OS ACI Mode 14.2(3l) , Cisco Systems Inc. NX-OS ACI Mode 14.2(3n) , Cisco Systems Inc. NX-OS ACI Mode 14.2(3q) , Cisco Systems Inc. NX-OS ACI Mode 14.2(4i) , Cisco Systems Inc. NX-OS ACI Mode 14.2(4k) , Cisco Systems Inc. NX-OS ACI Mode 14.2(4o) , Cisco Systems Inc. NX-OS ACI Mode 14.2(4p) , Cisco Systems Inc. NX-OS ACI Mode 14.2(5k) , Cisco Systems Inc. NX-OS ACI Mode 14.2(5l) , Cisco Systems Inc. NX-OS ACI Mode 14.2(5n) , Cisco Systems Inc. NX-OS ACI Mode 14.2(6d) , Cisco Systems Inc. NX-OS ACI Mode 14.2(6g) , Cisco Systems Inc. NX-OS ACI Mode 14.2(6h) , Cisco Systems Inc. NX-OS ACI Mode 14.2(6l) , Cisco Systems Inc. NX-OS ACI Mode 14.2(7f) , Cisco Systems Inc. NX-OS ACI Mode 14.2(7l) , Cisco Systems Inc. NX-OS ACI Mode 14.2(6o) , Cisco Systems Inc. NX-OS ACI Mode 14.2(7q) , Cisco Systems Inc. NX-OS ACI Mode 14.2(7r) , Cisco Systems Inc. NX-OS ACI Mode 14.2(7s) , Cisco Systems Inc. NX-OS ACI Mode 14.2(7t) , Cisco Systems Inc. NX-OS ACI Mode 14.2(7u) , Cisco Systems Inc. NX-OS ACI Mode 14.2(7v) , Cisco Systems Inc. NX-OS ACI Mode 14.2(7w) , Cisco Systems Inc. NX-OS ACI Mode 15.0(1k) , Cisco Systems Inc. NX-OS ACI Mode 15.0(1l) , Cisco Systems Inc. NX-OS ACI Mode 15.0(2e) , Cisco Systems Inc. NX-OS ACI Mode 15.0(2h) , Cisco Systems Inc. NX-OS ACI Mode 15.1(1h) , Cisco Systems Inc. NX-OS ACI Mode 15.1(2e) , Cisco Systems Inc. NX-OS ACI Mode 15.1(3e) , Cisco Systems Inc. NX-OS ACI Mode 15.1(4c) , Cisco Systems Inc. NX-OS ACI Mode 15.2(1g) , Cisco Systems Inc. NX-OS ACI Mode 15.2(2e) , Cisco Systems Inc. NX-OS ACI Mode 15.2(2f) , Cisco Systems Inc. NX-OS ACI Mode 15.2(2g) , Cisco Systems Inc. NX-OS ACI Mode 15.2(2h) , Cisco Systems Inc. NX-OS ACI Mode 15.2(3e) , Cisco Systems Inc. NX-OS ACI Mode 15.2(3f) , Cisco Systems Inc. NX-OS ACI Mode 15.2(3g) , Cisco Systems Inc. NX-OS ACI Mode 15.2(4d) , Cisco Systems Inc. NX-OS ACI Mode 15.2(4e) , Cisco Systems Inc. NX-OS ACI Mode 15.2(5c) , Cisco Systems Inc. NX-OS ACI Mode 15.2(5d) , Cisco Systems Inc. NX-OS ACI Mode 15.2(5e) , Cisco Systems Inc. NX-OS ACI Mode 15.2(4f) , Cisco Systems Inc. NX-OS ACI Mode 15.2(6e) , Cisco Systems Inc. NX-OS ACI Mode 15.2(6g) , Cisco Systems Inc. NX-OS ACI Mode 15.2(7f) , Cisco Systems Inc. NX-OS ACI Mode 15.2(7g) , Cisco Systems Inc. NX-OS ACI Mode 15.2(6h) , Cisco Systems Inc. NX-OS ACI Mode 15.2(8d) , Cisco Systems Inc. NX-OS ACI Mode 15.2(8e) , Cisco Systems Inc. NX-OS ACI Mode 15.2(8f) , Cisco Systems Inc. NX-OS ACI Mode 15.2(8g) , Cisco Systems Inc. NX-OS ACI Mode 15.2(8h) , Cisco Systems Inc. NX-OS ACI Mode 15.2(8i) , Cisco Systems Inc. NX-OS ACI Mode 16.0(1g) , Cisco Systems Inc. NX-OS ACI Mode 16.0(1j) , Cisco Systems Inc. NX-OS ACI Mode 16.0(6c) , Cisco Systems Inc. NX-OS ACI Mode 16.0(7e) , Cisco Systems Inc. NX-OS ACI Mode 16.0(8e) , Cisco Systems Inc. NX-OS ACI Mode 15.3(1d) , Cisco Systems Inc. NX-OS ACI Mode 15.3(2a) , Cisco Systems Inc. NX-OS ACI Mode 15.3(2b) , Cisco Systems Inc. NX-OS ACI Mode 15.3(2c) , Cisco Systems Inc. NX-OS ACI Mode 15.3(2d) , Cisco Systems Inc. NX-OS ACI Mode 15.3(2e) , Cisco Systems Inc. NX-OS ACI Mode 16.1(1f) ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0437\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Cisco NX-OS \u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u043e\u0432 Cisco Nexus \u0438 Cisco UCS Fabric Interconnects, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u044b",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (CWE-284)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0437\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Cisco NX-OS \u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u043e\u0432 Cisco Nexus \u0438 Cisco UCS Fabric Interconnects \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0448\u0438\u0431\u043a\u0430\u043c\u0438 \u0440\u0430\u0437\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u044b",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0439 \u043a\u043e\u0434, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430, \u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-284",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,6)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,2)"
}

CVE-2024-20397 (GCVE-0-2024-20397)

Vulnerability from cvelistv5 – Published: 2024-12-04 16:13 – Updated: 2025-04-08 14:29

Title

Cisco NX-OS Software Image Verification Bypass Vulnerability

Summary

A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification.  This vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software.

Severity ?

5.2 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

CWE

CWE-284 - Improper Access Control

Assigner

cisco

References

URL

Tags

https://sec.cloudapps.cisco.com/security/center/c…

Impacted products

Vendor

Product

Version

Cisco

Cisco NX-OS Software

Affected: 8.2(5)
Affected: 7.3(5)D1(1)
Affected: 8.4(2)
Affected: 8.4(3)
Affected: 9.2(3)
Affected: 7.0(3)I5(2)
Affected: 8.2(1)
Affected: 6.0(2)A8(7a)
Affected: 7.0(3)I4(5)
Affected: 7.3(1)D1(1)
Affected: 7.0(3)I4(6)
Affected: 7.0(3)I4(3)
Affected: 9.2(2v)
Affected: 7.3(0)D1(1)
Affected: 7.0(3)I4(7)
Affected: 7.0(3)I4(1)
Affected: 7.0(3)I4(8)
Affected: 7.0(3)I4(2)
Affected: 6.0(2)A8(11)
Affected: 7.3(4)D1(1)
Affected: 9.2(1)
Affected: 9.2(2t)
Affected: 9.2(3y)
Affected: 7.0(3)I4(1t)
Affected: 7.0(3)I7(6z)
Affected: 9.3(2)
Affected: 7.3(1)DY(1)
Affected: 7.0(3)F3(3)
Affected: 7.0(3)I7(3z)
Affected: 7.0(3)IM7(2)
Affected: 6.0(2)A8(11b)
Affected: 7.0(3)I7(5a)
Affected: 8.1(1)
Affected: 7.0(3)I6(1)
Affected: 8.2(2)
Affected: 7.0(3)I5(3b)
Affected: 8.3(2)
Affected: 7.3(2)D1(3a)
Affected: 9.2(4)
Affected: 6.0(2)A8(10)
Affected: 6.0(2)A8(2)
Affected: 7.0(3)IC4(4)
Affected: 8.1(2)
Affected: 7.0(3)F3(3c)
Affected: 7.3(3)D1(1)
Affected: 7.0(3)F3(1)
Affected: 7.0(3)F3(5)
Affected: 8.2(3)
Affected: 7.0(3)I7(2)
Affected: 7.0(3)I5(3)
Affected: 7.0(3)I7(3)
Affected: 6.0(2)A8(6)
Affected: 7.0(3)I6(2)
Affected: 8.3(1)
Affected: 8.4(1)
Affected: 8.1(1b)
Affected: 6.0(2)A8(5)
Affected: 7.3(0)DX(1)
Affected: 7.3(2)D1(1)
Affected: 9.3(1)
Affected: 6.0(2)A8(7)
Affected: 7.0(3)I7(6)
Affected: 7.3(2)D1(2)
Affected: 6.0(2)A8(11a)
Affected: 7.0(3)I4(8z)
Affected: 7.0(3)I4(9)
Affected: 8.2(4)
Affected: 7.0(3)I7(4)
Affected: 7.0(3)I7(7)
Affected: 7.3(0)DY(1)
Affected: 6.0(2)A8(9)
Affected: 6.0(2)A8(1)
Affected: 6.0(2)A8(10a)
Affected: 7.0(3)I5(1)
Affected: 9.3(1z)
Affected: 9.2(2)
Affected: 7.0(3)F3(4)
Affected: 7.0(3)I4(8b)
Affected: 8.1(2a)
Affected: 7.3(2)D1(3)
Affected: 6.0(2)A8(3)
Affected: 7.0(3)I4(6t)
Affected: 7.0(3)I5(3a)
Affected: 8.1(1a)
Affected: 6.0(2)A8(8)
Affected: 7.0(3)I7(5)
Affected: 7.0(3)F3(3a)
Affected: 6.0(2)A8(4)
Affected: 7.0(3)I4(8a)
Affected: 7.0(3)F3(2)
Affected: 7.0(3)I4(4)
Affected: 7.0(3)I7(1)
Affected: 7.0(3)IA7(2)
Affected: 7.0(3)IA7(1)
Affected: 6.0(2)A8(7b)
Affected: 6.0(2)A8(4a)
Affected: 8.4(1a)
Affected: 9.3(3)
Affected: 7.3(2)D1(1d)
Affected: 7.0(3)I7(8)
Affected: 9.3(4)
Affected: 7.3(6)D1(1)
Affected: 8.2(6)
Affected: 9.3(5)
Affected: 8.4(2a)
Affected: 8.4(2b)
Affected: 7.0(3)I7(9)
Affected: 8.5(1)
Affected: 9.3(6)
Affected: 10.1(2)
Affected: 10.1(1)
Affected: 8.4(4)
Affected: 7.3(7)D1(1)
Affected: 8.4(2c)
Affected: 9.3(5w)
Affected: 8.2(7)
Affected: 9.3(7)
Affected: 9.3(7k)
Affected: 7.0(3)I7(9w)
Affected: 10.2(1)
Affected: 7.3(8)D1(1)
Affected: 9.3(7a)
Affected: 8.2(7a)
Affected: 9.3(8)
Affected: 8.4(4a)
Affected: 8.4(2d)
Affected: 8.4(5)
Affected: 7.0(3)I7(10)
Affected: 8.2(8)
Affected: 10.2(1q)
Affected: 10.2(2)
Affected: 9.3(9)
Affected: 10.1(2t)
Affected: 7.3(9)D1(1)
Affected: 10.2(3)
Affected: 8.4(6)
Affected: 10.2(3t)
Affected: 8.4(2e)
Affected: 9.3(10)
Affected: 10.2(2a)
Affected: 9.2(1a)
Affected: 8.2(9)
Affected: 10.3(1)
Affected: 10.2(4)
Affected: 8.4(7)
Affected: 10.3(2)
Affected: 8.4(6a)
Affected: 9.3(11)
Affected: 10.3(3)
Affected: 10.2(5)
Affected: 9.4(1)
Affected: 9.3(2a)
Affected: 8.4(2f)
Affected: 8.2(10)
Affected: 9.3(12)
Affected: 10.2(3v)
Affected: 10.4(1)
Affected: 8.4(8)
Affected: 10.3(99w)
Affected: 10.2(6)
Affected: 10.3(3w)
Affected: 10.3(99x)
Affected: 10.3(3o)
Affected: 8.4(9)
Affected: 10.3(4)
Affected: 10.3(3p)
Affected: 10.3(4a)
Affected: 9.4(1a)
Affected: 10.4(2)
Affected: 10.3(3q)
Affected: 9.3(13)
Affected: 8.2(11)
Affected: 10.3(5)
Affected: 10.2(7)
Affected: 10.4(3)
Affected: 10.3(3x)
Affected: 10.3(4g)
Affected: 10.5(1)
Affected: 10.2(8)
Affected: 10.3(3r)
Affected: 10.3(6)
Affected: 9.3(14)
Affected: 10.4(4)
Affected: 10.3(4h)
Affected: 10.4(4g)

	Cisco	Cisco NX-OS System Software in ACI Mode	Affected: 14.1(1j) Affected: 14.0(3d) Affected: 14.1(1k) Affected: 13.2(1m) Affected: 14.0(3c) Affected: 13.2(2l) Affected: 13.2(7k) Affected: 14.1(1l) Affected: 14.2(2f) Affected: 13.2(3s) Affected: 13.2(2o) Affected: 14.0(2c) Affected: 14.1(2m) Affected: 13.2(5e) Affected: 14.1(2o) Affected: 13.2(7f) Affected: 13.2(41d) Affected: 13.2(4d) Affected: 13.2(3o) Affected: 13.2(1l) Affected: 14.0(1h) Affected: 13.2(3n) Affected: 14.2(1l) Affected: 14.2(2e) Affected: 13.2(4e) Affected: 14.2(1i) Affected: 13.2(9b) Affected: 14.1(2s) Affected: 14.1(1i) Affected: 14.1(2g) Affected: 13.2(3j) Affected: 13.2(5d) Affected: 13.2(6i) Affected: 14.1(2u) Affected: 13.2(3i) Affected: 13.2(3r) Affected: 13.2(5f) Affected: 14.2(1j) Affected: 14.1(2w) Affected: 14.2(3n) Affected: 14.2(3l) Affected: 14.2(3j) Affected: 14.2(2g) Affected: 13.2(8d) Affected: 14.1(2x) Affected: 13.2(9f) Affected: 14.2(3q) Affected: 14.2(4i) Affected: 13.2(9h) Affected: 15.0(1k) Affected: 14.2(4k) Affected: 15.0(1l) Affected: 15.0(2e) Affected: 14.2(4o) Affected: 14.2(4p) Affected: 15.0(2h) Affected: 14.2(5k) Affected: 14.2(5l) Affected: 14.2(5n) Affected: 15.1(1h) Affected: 14.2(6d) Affected: 15.1(2e) Affected: 14.2(6g) Affected: 14.2(6h) Affected: 15.1(3e) Affected: 13.2(10e) Affected: 14.2(6l) Affected: 14.2(7f) Affected: 15.1(4c) Affected: 14.2(6o) Affected: 15.2(1g) Affected: 15.2(2e) Affected: 14.2(7l) Affected: 13.2(10f) Affected: 15.2(2f) Affected: 15.2(2g) Affected: 14.2(7q) Affected: 15.2(2h) Affected: 15.2(3f) Affected: 15.2(3e) Affected: 15.2(3g) Affected: 14.2(7r) Affected: 14.2(7s) Affected: 15.2(4d) Affected: 15.2(4e) Affected: 14.2(7t) Affected: 15.2(5c) Affected: 15.2(5d) Affected: 13.2(10g) Affected: 16.0(1g) Affected: 14.2(7u) Affected: 15.2(5e) Affected: 15.2(4f) Affected: 15.2(6e) Affected: 15.2(6h) Affected: 16.0(1j) Affected: 15.2(6g) Affected: 15.2(7f) Affected: 14.2(7v) Affected: 15.2(7g) Affected: 16.0(2h) Affected: 14.2(7w) Affected: 15.2(8d) Affected: 16.0(2j) Affected: 15.2(8e) Affected: 16.0(3d) Affected: 16.0(3e) Affected: 15.2(8f) Affected: 15.2(8g) Affected: 15.3(1d) Affected: 15.2(8h) Affected: 16.0(4c) Affected: 15.3(2a) Affected: 15.2(8i) Affected: 16.0(5h) Affected: 15.3(2b) Affected: 16.0(3g) Affected: 16.0(5j) Affected: 15.3(2c) Affected: 16.0(6c) Affected: 15.3(2d) Affected: 16.1(1f) Affected: 16.0(7e) Affected: 16.0(8e) Affected: 15.3(2e)
	Cisco	Cisco Unified Computing System (Managed)	Affected: 4.0(4c) Affected: 4.0(2b) Affected: 4.1(2a) Affected: 4.0(1a) Affected: 4.0(2a) Affected: 4.0(1b) Affected: 4.1(1c) Affected: 4.0(4a) Affected: 4.0(4b) Affected: 4.0(2e) Affected: 4.1(1a) Affected: 4.0(4d) Affected: 4.0(4h) Affected: 4.0(4g) Affected: 4.0(1d) Affected: 4.1(1e) Affected: 4.0(4f) Affected: 4.0(4e) Affected: 4.0(4i) Affected: 4.1(1d) Affected: 4.0(2d) Affected: 4.1(1b) Affected: 4.0(1c) Affected: 4.1(2b) Affected: 4.0(4k) Affected: 4.1(3a) Affected: 4.1(3b) Affected: 4.1(2c) Affected: 4.0(4l) Affected: 4.1(4a) Affected: 4.1(3c) Affected: 4.1(3d) Affected: 4.2(1c) Affected: 4.2(1d) Affected: 4.0(4m) Affected: 4.1(3e) Affected: 4.2(1f) Affected: 4.1(3f) Affected: 4.2(1i) Affected: 4.1(3h) Affected: 4.2(1k) Affected: 4.2(1l) Affected: 4.0(4n) Affected: 4.2(1m) Affected: 4.1(3i) Affected: 4.2(2a) Affected: 4.2(1n) Affected: 4.1(3j) Affected: 4.2(2c) Affected: 4.2(2d) Affected: 4.2(3b) Affected: 4.1(3k) Affected: 4.0(4o) Affected: 4.2(2e) Affected: 4.2(3d) Affected: 4.2(3e) Affected: 4.2(3g) Affected: 4.1(3l) Affected: 4.3(2b) Affected: 4.2(3h) Affected: 4.2(3i) Affected: 4.3(2c) Affected: 4.1(3m) Affected: 4.3(2e) Affected: 4.3(3a) Affected: 4.2(3j) Affected: 4.3(3c) Affected: 4.2(3k) Affected: 4.2(3l) Affected: 4.3(2f) Affected: 4.2(3m)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-20397",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-12-04T19:27:41.534598Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-12-04T21:39:35.478Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Cisco NX-OS Software",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "8.2(5)"
            },
            {
              "status": "affected",
              "version": "7.3(5)D1(1)"
            },
            {
              "status": "affected",
              "version": "8.4(2)"
            },
            {
              "status": "affected",
              "version": "8.4(3)"
            },
            {
              "status": "affected",
              "version": "9.2(3)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I5(2)"
            },
            {
              "status": "affected",
              "version": "8.2(1)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(7a)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(5)"
            },
            {
              "status": "affected",
              "version": "7.3(1)D1(1)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(6)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(3)"
            },
            {
              "status": "affected",
              "version": "9.2(2v)"
            },
            {
              "status": "affected",
              "version": "7.3(0)D1(1)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(7)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(1)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(8)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(2)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(11)"
            },
            {
              "status": "affected",
              "version": "7.3(4)D1(1)"
            },
            {
              "status": "affected",
              "version": "9.2(1)"
            },
            {
              "status": "affected",
              "version": "9.2(2t)"
            },
            {
              "status": "affected",
              "version": "9.2(3y)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(1t)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(6z)"
            },
            {
              "status": "affected",
              "version": "9.3(2)"
            },
            {
              "status": "affected",
              "version": "7.3(1)DY(1)"
            },
            {
              "status": "affected",
              "version": "7.0(3)F3(3)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(3z)"
            },
            {
              "status": "affected",
              "version": "7.0(3)IM7(2)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(11b)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(5a)"
            },
            {
              "status": "affected",
              "version": "8.1(1)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I6(1)"
            },
            {
              "status": "affected",
              "version": "8.2(2)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I5(3b)"
            },
            {
              "status": "affected",
              "version": "8.3(2)"
            },
            {
              "status": "affected",
              "version": "7.3(2)D1(3a)"
            },
            {
              "status": "affected",
              "version": "9.2(4)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(10)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(2)"
            },
            {
              "status": "affected",
              "version": "7.0(3)IC4(4)"
            },
            {
              "status": "affected",
              "version": "8.1(2)"
            },
            {
              "status": "affected",
              "version": "7.0(3)F3(3c)"
            },
            {
              "status": "affected",
              "version": "7.3(3)D1(1)"
            },
            {
              "status": "affected",
              "version": "7.0(3)F3(1)"
            },
            {
              "status": "affected",
              "version": "7.0(3)F3(5)"
            },
            {
              "status": "affected",
              "version": "8.2(3)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(2)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I5(3)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(3)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(6)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I6(2)"
            },
            {
              "status": "affected",
              "version": "8.3(1)"
            },
            {
              "status": "affected",
              "version": "8.4(1)"
            },
            {
              "status": "affected",
              "version": "8.1(1b)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(5)"
            },
            {
              "status": "affected",
              "version": "7.3(0)DX(1)"
            },
            {
              "status": "affected",
              "version": "7.3(2)D1(1)"
            },
            {
              "status": "affected",
              "version": "9.3(1)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(7)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(6)"
            },
            {
              "status": "affected",
              "version": "7.3(2)D1(2)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(11a)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(8z)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(9)"
            },
            {
              "status": "affected",
              "version": "8.2(4)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(4)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(7)"
            },
            {
              "status": "affected",
              "version": "7.3(0)DY(1)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(9)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(1)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(10a)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I5(1)"
            },
            {
              "status": "affected",
              "version": "9.3(1z)"
            },
            {
              "status": "affected",
              "version": "9.2(2)"
            },
            {
              "status": "affected",
              "version": "7.0(3)F3(4)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(8b)"
            },
            {
              "status": "affected",
              "version": "8.1(2a)"
            },
            {
              "status": "affected",
              "version": "7.3(2)D1(3)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(3)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(6t)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I5(3a)"
            },
            {
              "status": "affected",
              "version": "8.1(1a)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(8)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(5)"
            },
            {
              "status": "affected",
              "version": "7.0(3)F3(3a)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(4)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(8a)"
            },
            {
              "status": "affected",
              "version": "7.0(3)F3(2)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I4(4)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(1)"
            },
            {
              "status": "affected",
              "version": "7.0(3)IA7(2)"
            },
            {
              "status": "affected",
              "version": "7.0(3)IA7(1)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(7b)"
            },
            {
              "status": "affected",
              "version": "6.0(2)A8(4a)"
            },
            {
              "status": "affected",
              "version": "8.4(1a)"
            },
            {
              "status": "affected",
              "version": "9.3(3)"
            },
            {
              "status": "affected",
              "version": "7.3(2)D1(1d)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(8)"
            },
            {
              "status": "affected",
              "version": "9.3(4)"
            },
            {
              "status": "affected",
              "version": "7.3(6)D1(1)"
            },
            {
              "status": "affected",
              "version": "8.2(6)"
            },
            {
              "status": "affected",
              "version": "9.3(5)"
            },
            {
              "status": "affected",
              "version": "8.4(2a)"
            },
            {
              "status": "affected",
              "version": "8.4(2b)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(9)"
            },
            {
              "status": "affected",
              "version": "8.5(1)"
            },
            {
              "status": "affected",
              "version": "9.3(6)"
            },
            {
              "status": "affected",
              "version": "10.1(2)"
            },
            {
              "status": "affected",
              "version": "10.1(1)"
            },
            {
              "status": "affected",
              "version": "8.4(4)"
            },
            {
              "status": "affected",
              "version": "7.3(7)D1(1)"
            },
            {
              "status": "affected",
              "version": "8.4(2c)"
            },
            {
              "status": "affected",
              "version": "9.3(5w)"
            },
            {
              "status": "affected",
              "version": "8.2(7)"
            },
            {
              "status": "affected",
              "version": "9.3(7)"
            },
            {
              "status": "affected",
              "version": "9.3(7k)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(9w)"
            },
            {
              "status": "affected",
              "version": "10.2(1)"
            },
            {
              "status": "affected",
              "version": "7.3(8)D1(1)"
            },
            {
              "status": "affected",
              "version": "9.3(7a)"
            },
            {
              "status": "affected",
              "version": "8.2(7a)"
            },
            {
              "status": "affected",
              "version": "9.3(8)"
            },
            {
              "status": "affected",
              "version": "8.4(4a)"
            },
            {
              "status": "affected",
              "version": "8.4(2d)"
            },
            {
              "status": "affected",
              "version": "8.4(5)"
            },
            {
              "status": "affected",
              "version": "7.0(3)I7(10)"
            },
            {
              "status": "affected",
              "version": "8.2(8)"
            },
            {
              "status": "affected",
              "version": "10.2(1q)"
            },
            {
              "status": "affected",
              "version": "10.2(2)"
            },
            {
              "status": "affected",
              "version": "9.3(9)"
            },
            {
              "status": "affected",
              "version": "10.1(2t)"
            },
            {
              "status": "affected",
              "version": "7.3(9)D1(1)"
            },
            {
              "status": "affected",
              "version": "10.2(3)"
            },
            {
              "status": "affected",
              "version": "8.4(6)"
            },
            {
              "status": "affected",
              "version": "10.2(3t)"
            },
            {
              "status": "affected",
              "version": "8.4(2e)"
            },
            {
              "status": "affected",
              "version": "9.3(10)"
            },
            {
              "status": "affected",
              "version": "10.2(2a)"
            },
            {
              "status": "affected",
              "version": "9.2(1a)"
            },
            {
              "status": "affected",
              "version": "8.2(9)"
            },
            {
              "status": "affected",
              "version": "10.3(1)"
            },
            {
              "status": "affected",
              "version": "10.2(4)"
            },
            {
              "status": "affected",
              "version": "8.4(7)"
            },
            {
              "status": "affected",
              "version": "10.3(2)"
            },
            {
              "status": "affected",
              "version": "8.4(6a)"
            },
            {
              "status": "affected",
              "version": "9.3(11)"
            },
            {
              "status": "affected",
              "version": "10.3(3)"
            },
            {
              "status": "affected",
              "version": "10.2(5)"
            },
            {
              "status": "affected",
              "version": "9.4(1)"
            },
            {
              "status": "affected",
              "version": "9.3(2a)"
            },
            {
              "status": "affected",
              "version": "8.4(2f)"
            },
            {
              "status": "affected",
              "version": "8.2(10)"
            },
            {
              "status": "affected",
              "version": "9.3(12)"
            },
            {
              "status": "affected",
              "version": "10.2(3v)"
            },
            {
              "status": "affected",
              "version": "10.4(1)"
            },
            {
              "status": "affected",
              "version": "8.4(8)"
            },
            {
              "status": "affected",
              "version": "10.3(99w)"
            },
            {
              "status": "affected",
              "version": "10.2(6)"
            },
            {
              "status": "affected",
              "version": "10.3(3w)"
            },
            {
              "status": "affected",
              "version": "10.3(99x)"
            },
            {
              "status": "affected",
              "version": "10.3(3o)"
            },
            {
              "status": "affected",
              "version": "8.4(9)"
            },
            {
              "status": "affected",
              "version": "10.3(4)"
            },
            {
              "status": "affected",
              "version": "10.3(3p)"
            },
            {
              "status": "affected",
              "version": "10.3(4a)"
            },
            {
              "status": "affected",
              "version": "9.4(1a)"
            },
            {
              "status": "affected",
              "version": "10.4(2)"
            },
            {
              "status": "affected",
              "version": "10.3(3q)"
            },
            {
              "status": "affected",
              "version": "9.3(13)"
            },
            {
              "status": "affected",
              "version": "8.2(11)"
            },
            {
              "status": "affected",
              "version": "10.3(5)"
            },
            {
              "status": "affected",
              "version": "10.2(7)"
            },
            {
              "status": "affected",
              "version": "10.4(3)"
            },
            {
              "status": "affected",
              "version": "10.3(3x)"
            },
            {
              "status": "affected",
              "version": "10.3(4g)"
            },
            {
              "status": "affected",
              "version": "10.5(1)"
            },
            {
              "status": "affected",
              "version": "10.2(8)"
            },
            {
              "status": "affected",
              "version": "10.3(3r)"
            },
            {
              "status": "affected",
              "version": "10.3(6)"
            },
            {
              "status": "affected",
              "version": "9.3(14)"
            },
            {
              "status": "affected",
              "version": "10.4(4)"
            },
            {
              "status": "affected",
              "version": "10.3(4h)"
            },
            {
              "status": "affected",
              "version": "10.4(4g)"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Cisco NX-OS System Software in ACI Mode",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "14.1(1j)"
            },
            {
              "status": "affected",
              "version": "14.0(3d)"
            },
            {
              "status": "affected",
              "version": "14.1(1k)"
            },
            {
              "status": "affected",
              "version": "13.2(1m)"
            },
            {
              "status": "affected",
              "version": "14.0(3c)"
            },
            {
              "status": "affected",
              "version": "13.2(2l)"
            },
            {
              "status": "affected",
              "version": "13.2(7k)"
            },
            {
              "status": "affected",
              "version": "14.1(1l)"
            },
            {
              "status": "affected",
              "version": "14.2(2f)"
            },
            {
              "status": "affected",
              "version": "13.2(3s)"
            },
            {
              "status": "affected",
              "version": "13.2(2o)"
            },
            {
              "status": "affected",
              "version": "14.0(2c)"
            },
            {
              "status": "affected",
              "version": "14.1(2m)"
            },
            {
              "status": "affected",
              "version": "13.2(5e)"
            },
            {
              "status": "affected",
              "version": "14.1(2o)"
            },
            {
              "status": "affected",
              "version": "13.2(7f)"
            },
            {
              "status": "affected",
              "version": "13.2(41d)"
            },
            {
              "status": "affected",
              "version": "13.2(4d)"
            },
            {
              "status": "affected",
              "version": "13.2(3o)"
            },
            {
              "status": "affected",
              "version": "13.2(1l)"
            },
            {
              "status": "affected",
              "version": "14.0(1h)"
            },
            {
              "status": "affected",
              "version": "13.2(3n)"
            },
            {
              "status": "affected",
              "version": "14.2(1l)"
            },
            {
              "status": "affected",
              "version": "14.2(2e)"
            },
            {
              "status": "affected",
              "version": "13.2(4e)"
            },
            {
              "status": "affected",
              "version": "14.2(1i)"
            },
            {
              "status": "affected",
              "version": "13.2(9b)"
            },
            {
              "status": "affected",
              "version": "14.1(2s)"
            },
            {
              "status": "affected",
              "version": "14.1(1i)"
            },
            {
              "status": "affected",
              "version": "14.1(2g)"
            },
            {
              "status": "affected",
              "version": "13.2(3j)"
            },
            {
              "status": "affected",
              "version": "13.2(5d)"
            },
            {
              "status": "affected",
              "version": "13.2(6i)"
            },
            {
              "status": "affected",
              "version": "14.1(2u)"
            },
            {
              "status": "affected",
              "version": "13.2(3i)"
            },
            {
              "status": "affected",
              "version": "13.2(3r)"
            },
            {
              "status": "affected",
              "version": "13.2(5f)"
            },
            {
              "status": "affected",
              "version": "14.2(1j)"
            },
            {
              "status": "affected",
              "version": "14.1(2w)"
            },
            {
              "status": "affected",
              "version": "14.2(3n)"
            },
            {
              "status": "affected",
              "version": "14.2(3l)"
            },
            {
              "status": "affected",
              "version": "14.2(3j)"
            },
            {
              "status": "affected",
              "version": "14.2(2g)"
            },
            {
              "status": "affected",
              "version": "13.2(8d)"
            },
            {
              "status": "affected",
              "version": "14.1(2x)"
            },
            {
              "status": "affected",
              "version": "13.2(9f)"
            },
            {
              "status": "affected",
              "version": "14.2(3q)"
            },
            {
              "status": "affected",
              "version": "14.2(4i)"
            },
            {
              "status": "affected",
              "version": "13.2(9h)"
            },
            {
              "status": "affected",
              "version": "15.0(1k)"
            },
            {
              "status": "affected",
              "version": "14.2(4k)"
            },
            {
              "status": "affected",
              "version": "15.0(1l)"
            },
            {
              "status": "affected",
              "version": "15.0(2e)"
            },
            {
              "status": "affected",
              "version": "14.2(4o)"
            },
            {
              "status": "affected",
              "version": "14.2(4p)"
            },
            {
              "status": "affected",
              "version": "15.0(2h)"
            },
            {
              "status": "affected",
              "version": "14.2(5k)"
            },
            {
              "status": "affected",
              "version": "14.2(5l)"
            },
            {
              "status": "affected",
              "version": "14.2(5n)"
            },
            {
              "status": "affected",
              "version": "15.1(1h)"
            },
            {
              "status": "affected",
              "version": "14.2(6d)"
            },
            {
              "status": "affected",
              "version": "15.1(2e)"
            },
            {
              "status": "affected",
              "version": "14.2(6g)"
            },
            {
              "status": "affected",
              "version": "14.2(6h)"
            },
            {
              "status": "affected",
              "version": "15.1(3e)"
            },
            {
              "status": "affected",
              "version": "13.2(10e)"
            },
            {
              "status": "affected",
              "version": "14.2(6l)"
            },
            {
              "status": "affected",
              "version": "14.2(7f)"
            },
            {
              "status": "affected",
              "version": "15.1(4c)"
            },
            {
              "status": "affected",
              "version": "14.2(6o)"
            },
            {
              "status": "affected",
              "version": "15.2(1g)"
            },
            {
              "status": "affected",
              "version": "15.2(2e)"
            },
            {
              "status": "affected",
              "version": "14.2(7l)"
            },
            {
              "status": "affected",
              "version": "13.2(10f)"
            },
            {
              "status": "affected",
              "version": "15.2(2f)"
            },
            {
              "status": "affected",
              "version": "15.2(2g)"
            },
            {
              "status": "affected",
              "version": "14.2(7q)"
            },
            {
              "status": "affected",
              "version": "15.2(2h)"
            },
            {
              "status": "affected",
              "version": "15.2(3f)"
            },
            {
              "status": "affected",
              "version": "15.2(3e)"
            },
            {
              "status": "affected",
              "version": "15.2(3g)"
            },
            {
              "status": "affected",
              "version": "14.2(7r)"
            },
            {
              "status": "affected",
              "version": "14.2(7s)"
            },
            {
              "status": "affected",
              "version": "15.2(4d)"
            },
            {
              "status": "affected",
              "version": "15.2(4e)"
            },
            {
              "status": "affected",
              "version": "14.2(7t)"
            },
            {
              "status": "affected",
              "version": "15.2(5c)"
            },
            {
              "status": "affected",
              "version": "15.2(5d)"
            },
            {
              "status": "affected",
              "version": "13.2(10g)"
            },
            {
              "status": "affected",
              "version": "16.0(1g)"
            },
            {
              "status": "affected",
              "version": "14.2(7u)"
            },
            {
              "status": "affected",
              "version": "15.2(5e)"
            },
            {
              "status": "affected",
              "version": "15.2(4f)"
            },
            {
              "status": "affected",
              "version": "15.2(6e)"
            },
            {
              "status": "affected",
              "version": "15.2(6h)"
            },
            {
              "status": "affected",
              "version": "16.0(1j)"
            },
            {
              "status": "affected",
              "version": "15.2(6g)"
            },
            {
              "status": "affected",
              "version": "15.2(7f)"
            },
            {
              "status": "affected",
              "version": "14.2(7v)"
            },
            {
              "status": "affected",
              "version": "15.2(7g)"
            },
            {
              "status": "affected",
              "version": "16.0(2h)"
            },
            {
              "status": "affected",
              "version": "14.2(7w)"
            },
            {
              "status": "affected",
              "version": "15.2(8d)"
            },
            {
              "status": "affected",
              "version": "16.0(2j)"
            },
            {
              "status": "affected",
              "version": "15.2(8e)"
            },
            {
              "status": "affected",
              "version": "16.0(3d)"
            },
            {
              "status": "affected",
              "version": "16.0(3e)"
            },
            {
              "status": "affected",
              "version": "15.2(8f)"
            },
            {
              "status": "affected",
              "version": "15.2(8g)"
            },
            {
              "status": "affected",
              "version": "15.3(1d)"
            },
            {
              "status": "affected",
              "version": "15.2(8h)"
            },
            {
              "status": "affected",
              "version": "16.0(4c)"
            },
            {
              "status": "affected",
              "version": "15.3(2a)"
            },
            {
              "status": "affected",
              "version": "15.2(8i)"
            },
            {
              "status": "affected",
              "version": "16.0(5h)"
            },
            {
              "status": "affected",
              "version": "15.3(2b)"
            },
            {
              "status": "affected",
              "version": "16.0(3g)"
            },
            {
              "status": "affected",
              "version": "16.0(5j)"
            },
            {
              "status": "affected",
              "version": "15.3(2c)"
            },
            {
              "status": "affected",
              "version": "16.0(6c)"
            },
            {
              "status": "affected",
              "version": "15.3(2d)"
            },
            {
              "status": "affected",
              "version": "16.1(1f)"
            },
            {
              "status": "affected",
              "version": "16.0(7e)"
            },
            {
              "status": "affected",
              "version": "16.0(8e)"
            },
            {
              "status": "affected",
              "version": "15.3(2e)"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Cisco Unified Computing System (Managed)",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "4.0(4c)"
            },
            {
              "status": "affected",
              "version": "4.0(2b)"
            },
            {
              "status": "affected",
              "version": "4.1(2a)"
            },
            {
              "status": "affected",
              "version": "4.0(1a)"
            },
            {
              "status": "affected",
              "version": "4.0(2a)"
            },
            {
              "status": "affected",
              "version": "4.0(1b)"
            },
            {
              "status": "affected",
              "version": "4.1(1c)"
            },
            {
              "status": "affected",
              "version": "4.0(4a)"
            },
            {
              "status": "affected",
              "version": "4.0(4b)"
            },
            {
              "status": "affected",
              "version": "4.0(2e)"
            },
            {
              "status": "affected",
              "version": "4.1(1a)"
            },
            {
              "status": "affected",
              "version": "4.0(4d)"
            },
            {
              "status": "affected",
              "version": "4.0(4h)"
            },
            {
              "status": "affected",
              "version": "4.0(4g)"
            },
            {
              "status": "affected",
              "version": "4.0(1d)"
            },
            {
              "status": "affected",
              "version": "4.1(1e)"
            },
            {
              "status": "affected",
              "version": "4.0(4f)"
            },
            {
              "status": "affected",
              "version": "4.0(4e)"
            },
            {
              "status": "affected",
              "version": "4.0(4i)"
            },
            {
              "status": "affected",
              "version": "4.1(1d)"
            },
            {
              "status": "affected",
              "version": "4.0(2d)"
            },
            {
              "status": "affected",
              "version": "4.1(1b)"
            },
            {
              "status": "affected",
              "version": "4.0(1c)"
            },
            {
              "status": "affected",
              "version": "4.1(2b)"
            },
            {
              "status": "affected",
              "version": "4.0(4k)"
            },
            {
              "status": "affected",
              "version": "4.1(3a)"
            },
            {
              "status": "affected",
              "version": "4.1(3b)"
            },
            {
              "status": "affected",
              "version": "4.1(2c)"
            },
            {
              "status": "affected",
              "version": "4.0(4l)"
            },
            {
              "status": "affected",
              "version": "4.1(4a)"
            },
            {
              "status": "affected",
              "version": "4.1(3c)"
            },
            {
              "status": "affected",
              "version": "4.1(3d)"
            },
            {
              "status": "affected",
              "version": "4.2(1c)"
            },
            {
              "status": "affected",
              "version": "4.2(1d)"
            },
            {
              "status": "affected",
              "version": "4.0(4m)"
            },
            {
              "status": "affected",
              "version": "4.1(3e)"
            },
            {
              "status": "affected",
              "version": "4.2(1f)"
            },
            {
              "status": "affected",
              "version": "4.1(3f)"
            },
            {
              "status": "affected",
              "version": "4.2(1i)"
            },
            {
              "status": "affected",
              "version": "4.1(3h)"
            },
            {
              "status": "affected",
              "version": "4.2(1k)"
            },
            {
              "status": "affected",
              "version": "4.2(1l)"
            },
            {
              "status": "affected",
              "version": "4.0(4n)"
            },
            {
              "status": "affected",
              "version": "4.2(1m)"
            },
            {
              "status": "affected",
              "version": "4.1(3i)"
            },
            {
              "status": "affected",
              "version": "4.2(2a)"
            },
            {
              "status": "affected",
              "version": "4.2(1n)"
            },
            {
              "status": "affected",
              "version": "4.1(3j)"
            },
            {
              "status": "affected",
              "version": "4.2(2c)"
            },
            {
              "status": "affected",
              "version": "4.2(2d)"
            },
            {
              "status": "affected",
              "version": "4.2(3b)"
            },
            {
              "status": "affected",
              "version": "4.1(3k)"
            },
            {
              "status": "affected",
              "version": "4.0(4o)"
            },
            {
              "status": "affected",
              "version": "4.2(2e)"
            },
            {
              "status": "affected",
              "version": "4.2(3d)"
            },
            {
              "status": "affected",
              "version": "4.2(3e)"
            },
            {
              "status": "affected",
              "version": "4.2(3g)"
            },
            {
              "status": "affected",
              "version": "4.1(3l)"
            },
            {
              "status": "affected",
              "version": "4.3(2b)"
            },
            {
              "status": "affected",
              "version": "4.2(3h)"
            },
            {
              "status": "affected",
              "version": "4.2(3i)"
            },
            {
              "status": "affected",
              "version": "4.3(2c)"
            },
            {
              "status": "affected",
              "version": "4.1(3m)"
            },
            {
              "status": "affected",
              "version": "4.3(2e)"
            },
            {
              "status": "affected",
              "version": "4.3(3a)"
            },
            {
              "status": "affected",
              "version": "4.2(3j)"
            },
            {
              "status": "affected",
              "version": "4.3(3c)"
            },
            {
              "status": "affected",
              "version": "4.2(3k)"
            },
            {
              "status": "affected",
              "version": "4.2(3l)"
            },
            {
              "status": "affected",
              "version": "4.3(2f)"
            },
            {
              "status": "affected",
              "version": "4.2(3m)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification.\u0026nbsp;\r\n\r\nThis vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "PHYSICAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
            "version": "3.1"
          },
          "format": "cvssV3_1"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "Improper Access Control",
              "lang": "en",
              "type": "cwe"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-04-08T14:29:18.430Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "cisco-sa-nxos-image-sig-bypas-pQDRQvjL",
          "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL"
        }
      ],
      "source": {
        "advisory": "cisco-sa-nxos-image-sig-bypas-pQDRQvjL",
        "defects": [
          "CSCwm47438"
        ],
        "discovery": "EXTERNAL"
      },
      "title": "Cisco NX-OS Software Image Verification Bypass Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2024-20397",
    "datePublished": "2024-12-04T16:13:13.890Z",
    "dateReserved": "2023-11-08T15:08:07.660Z",
    "dateUpdated": "2025-04-08T14:29:18.430Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2025-11707

CVE-2024-20397 (GCVE-0-2024-20397)

Tags

Sightings

Nomenclature