Main Vulnerability Database SB2024012482

SB2024012482 - ACL bypass in Cisco Small Business Series Switches

Published: January 24, 2024

Security Bulletin ID SB2024012482

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper access control (CVE-ID: CVE-2024-20263)

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to incorrect processing of ACLs on a stacked configuration when either the primary or backup switches experience a full stack reload or power cycle. A remote attacker can send specially crafted traffic through the device to bypass configured ACLs, causing traffic to be dropped or forwarded in an unexpected manner.

Remediation

Install update from vendor's website.

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-bus-acl-bypass-5zn9hNJk
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwf48882
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwh68993