Cisco Smart License Utility vulnerabilities
2 known vulnerabilities affecting cisco/smart_license_utility.
Total CVEs
2
CISA KEV
1
actively exploited
Public exploits
2
Exploited in wild
2
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2024-20439P1CRITICALCVSS 9.8KEVPoC≥ 2.0.0, < 2.3.02024-09-04
CVE-2024-20439 [CRITICAL] CWE-912 CVE-2024-20439: A vulnerability in Cisco Smart Licensing Utility (CSLU) could allow an unauthenticated, remote attac
A vulnerability in Cisco Smart Licensing Utility (CSLU) could allow an unauthenticated, remote attacker to log into an affected system by using a static administrative credential.
This vulnerability is due to an undocumented static user credential for an administrative account. An attacker could exploit this vulnerability by using the static crede
nvd
CVE-2024-20440P1HIGHCVSS 7.5ExploitedPoCv2.0.0v2.1.0+1 more2024-09-04
CVE-2024-20440 [HIGH] CWE-532 CVE-2024-20440: A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker to
A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker to access sensitive information.
This vulnerability is due to excessive verbosity in a debug log file. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to ob
nvd