CVE-2024-20366
published 2024-05-15CVE-2024-20366: A vulnerability in the Tail-f High Availability Cluster Communications (HCC) function pack of Cisco Crosswork Network Services Orchestrator (NSO) could allow…
PriorityP345high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.20%
9.7th percentile
A vulnerability in the Tail-f High Availability Cluster Communications (HCC) function pack of Cisco Crosswork Network Services Orchestrator (NSO) could allow an authenticated, local attacker to elevate privileges to root on an affected device.
This vulnerability exists because a user-controlled search path is used to locate executable files. An attacker could exploit this vulnerability by configuring the application in a way that causes a malicious file to be executed. A successful exploit could allow the attacker to execute arbitrary code on an affected device as the root user. To exploit this vulnerability, the attacker would need valid credentials on an affected device.
Affected
151 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
| cisco | cisco_network_services_orchestrator | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vendor_cisco7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco Crosswork Network Services Orchestrator Privilege Escalation Vulnerability
vendor_cisco·2024-05-15·CVSS 7.8
CVE-2024-20366 [HIGH] CWE-73 Cisco Crosswork Network Services Orchestrator Privilege Escalation Vulnerability
Cisco Crosswork Network Services Orchestrator Privilege Escalation Vulnerability
A vulnerability in the Tail-f High Availability Cluster Communications (HCC) function pack of Cisco Crosswork Network Services Orchestrator (NSO) could allow an authenticated, local attacker to elevate privileges to root on an affected device.
This vulnerability exists because a user-controlled search path is used to locate executable files. An attacker could exploit this vulnerability by configuring the application in a way that causes a malicious file to be executed. A successful exploit could allow the attacker to execute arbitrary code on an affected device as the root user. To exploit this vulnerability, the attacker would need valid credentials on an affected device.
Cisco has released software updates
Cisco
Cisco Crosswork Network Services Orchestrator Privilege Escalation Vulnerability
vendor_cisco·CVSS 3.1
CVE-2024-20366 Cisco Crosswork Network Services Orchestrator Privilege Escalation Vulnerability
CVE-2024-20366: Cisco Crosswork Network Services Orchestrator Privilege Escalation Vulnerability
A vulnerability in the Tail-f High Availability Cluster Communications (HCC) function pack of Cisco Crosswork Network Services Orchestrator (NSO) could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability exists because a user-controlled search path is used to locate executable files. An attacker could exploit this vulnerability by configuring the application in a way that causes a malicious file to be executed. A successful exploit could allow the attacker to execute arbitrary code on an affected device as the root user. To exploit this vulnerability, the attacker would need valid credentials on an affected device. Cisco has released so
GHSA
GHSA-fpvx-gw57-2p3v: A vulnerability in the Tail-f High Availability Cluster Communications (HCC) function pack of Cisco Crosswork Network Services Orchestrator (NSO) coul
ghsa_unreviewed·2024-05-15
CVE-2024-20366 [HIGH] CWE-427 GHSA-fpvx-gw57-2p3v: A vulnerability in the Tail-f High Availability Cluster Communications (HCC) function pack of Cisco Crosswork Network Services Orchestrator (NSO) coul
A vulnerability in the Tail-f High Availability Cluster Communications (HCC) function pack of Cisco Crosswork Network Services Orchestrator (NSO) could allow an authenticated, local attacker to elevate privileges to root on an affected device.
This vulnerability exists because a user-controlled search path is used to locate executable files. An attacker could exploit this vulnerability by configuring the application in a way that causes a malicious file to be executed. A successful exploit could allow the attacker to execute arbitrary code on an affected device as the root user. To exploit this vulnerability, the attacker would need valid credentials on an affected device.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-05-15
Published