cbcvebase.
CVE-2020-3140
published 2020-07-16

CVE-2020-3140: A vulnerability in the web management interface of Cisco Prime License Manager (PLM) Software could allow an unauthenticated, remote attacker to gain…

PriorityP267critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
3.08%
86.0th percentile
A vulnerability in the web management interface of Cisco Prime License Manager (PLM) Software could allow an unauthenticated, remote attacker to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of user input on the web management interface. An attacker could exploit this vulnerability by submitting a malicious request to an affected system. An exploit could allow the attacker to gain administrative-level privileges on the system. The attacker needs a valid username to exploit this vulnerability.

Affected

7 ranges
VendorProductVersion rangeFixed in
ciscocisco_prime_license_manager
ciscoprime_license_manager<= 10.5\(2\)su9
ciscoprime_license_manager
ciscoprime_license_manager11.0 – 11.5\(1\)su6
libreofficelibreoffice>= 0 < 1:6.0.7-0ubuntu0.18.04.121:6.0.7-0ubuntu0.18.04.12
libreofficelibreoffice>= 0 < 1:6.4.7-0ubuntu0.20.04.61:6.4.7-0ubuntu0.20.04.6
libreofficelibreoffice>= 0 < 1:7.3.6-0ubuntu0.22.04.21:7.3.6-0ubuntu0.22.04.2

Detection & IOCsextracted from sources · hover to see the quote

  • The vulnerability requires a valid username to exploit — monitor for authentication attempts using known/enumerated usernames against the Cisco PLM web management interface, especially those resulting in unexpected privilege escalation.
  • Look for unauthenticated or anomalous requests to the Cisco Prime License Manager (PLM) web management interface that result in administrative-level access, indicative of exploitation of insufficient input validation.
  • Track Cisco bug ID CSCvq97227 for patch status; unpatched Cisco PLM instances are the target surface for this privilege escalation vulnerability.
  • ·The vulnerability is due to insufficient validation of user input on the web management interface — ensure the PLM web management interface is not exposed to untrusted networks, as there are no workarounds available.
  • ·Cisco confirms there are no workarounds for this vulnerability; patching via released software updates is the only remediation path.

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv5.3MEDIUM
vendor_cisco9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.