CVE-2024-20326

CWE-78OS Command InjectionCWE-77Command InjectionCWE-2665 documents4 sources
Severity
7.8HIGH
EPSS
0.3%
top 44.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Cisco Crosswork Network Services OrchestratorCisco Cisco ConfdCisco Cisco Confd Basic+3 more
Timeline
PublishedMay 16

Description

A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could allow an authenticated, low-privileged, local attacker to read and write arbitrary files as root on the underlying operating system. This vulnerability is due to improper authorization enforcement when specific CLI commands are used. An attacker could exploit this vulnerability by executing an affected CLI command with crafted arguments. A successful exploit could allow the attacker to read or writ

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages6 packages

CVEListV5cisco/cisco_confd85 versions+84
NVDcisco/confd_basic14 versions+13
NVDcisco/confd_premium85 versions+84

🔴Vulnerability Details

2
CVEList
CVE-2024-20326: A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could allow an authenticated, low-privileged, local attacke2024-05-16
GHSA
GHSA-xfg4-45f5-2g88: A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could allow an authenticated, low-privileged, local attacke2024-05-16

📋Vendor Advisories

2
Cisco
Cisco Crosswork Network Services Orchestrator Vulnerabilities2024-05-15
Cisco
ConfD CLI Privilege Escalation and Arbitrary File Read and Write Vulnerabilities2024-05-15
CVE-2024-20326 (HIGH CVSS 7.8) | A vulnerability in the ConfD CLI an | cvebase.io