Vulnerability identifier: #VU88805

Vulnerability risk: Low

CVSSv3.1: 8.2 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2024-20356

CWE-ID: CWE-78

Exploitation vector: Network

Exploits in database: 1

• April 19, 2024
  • CVE-2024-20356 [Github]

Impact: Code execution

Vulnerable software:
Cisco Integrated Management Controller
Server applications / Remote management servers, RDP, SSH
Enterprise NFV Infrastructure Software
Server applications / Virtualization software
Cisco 5000 Series Enterprise Network Compute System
Client/Desktop applications / Virtualization software
Catalyst 8300 Series Edge Universal CPE
Hardware solutions / Routers & switches, VoIP, GSM, etc
UCS C-Series M5 Rack Servers
Server applications / Other server solutions
UCS C-Series M6 Rack Servers
Server applications / Other server solutions
UCS C-Series M7 Rack Servers
Server applications / Other server solutions
UCS E-Series Servers
Other software / Other software solutions
UCS S-Series Servers in standalone mode
Other software / Other software solutions

Vendor: Cisco Systems, Inc