Improper Privilege Management in Cisco IOS XR Software
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Improper Privilege Management
EUVDB-ID: #VU87513
Risk: Low
CVSSv3.1: 5.7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-20262
CWE-ID:
CWE-269 - Improper Privilege Management
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper privilege management in the Secure Copy Protocol (SCP) and SFTP feature. A local user can cause a denial of service condition on the target system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsCisco IOS XR: 7.9 - 24.1
Cisco 8000 Series Routers: All versions
Cisco 8201 Router: All versions
Cisco 8202 Router: All versions
Cisco 8808 Router: All versions
Cisco 8812 Router: All versions
Cisco 8818 Router: All versions
Cisco ASR 9000 Series Aggregation Services Routers: All versions
Cisco ASR 9006 Router: All versions
Cisco ASR 9010 Router: All versions
Cisco ASR 9901 Router: All versions
Cisco ASR 9902 Router: All versions
Cisco ASR 9903 Router: All versions
Cisco ASR 9904 Router: All versions
Cisco ASR 9906 Router: All versions
Cisco ASR 9910 Router: All versions
Cisco ASR 9912 Router: All versions
Cisco ASR 9922 Router: All versions
Cisco IOS XRv 9000 Router: All versions
Cisco NCS 540-12Z20G-SYS-A Router: All versions
Cisco NCS 540-12Z20G-SYS-D Router: All versions
Cisco NCS 540-24Q8L2DD-SYS Router: All versions
Cisco NCS 540-24Z8Q2C-SYS Router: All versions
Cisco NCS 540-28Z4C-SYS-A Router: All versions
Cisco NCS 540-28Z4C-SYS-D Router: All versions
Cisco NCS 540-6Z14S-SYS-D Router: All versions
Cisco NCS 540-6Z18G-SYS-A Router: All versions
Cisco NCS 540-6Z18G-SYS-D Router: All versions
Cisco NCS 540-ACC-SYS Router: All versions
Cisco NCS 540-FH-AGG Router: All versions
Cisco NCS 540-FH-CSR-SYS Router: All versions
Cisco NCS 540X-12Z16G-SYS-A Router: All versions
Cisco NCS 540X-12Z16G-SYS-D Router: All versions
Cisco NCS 540X-16Z4G8Q2C-A Router: All versions
Cisco NCS 540X-16Z4G8Q2C-D Router: All versions
Cisco NCS 540X-16Z8Q2C-D Router: All versions
Cisco NCS 540X-4Z14G2Q-A Router: All versions
Cisco NCS 540X-4Z14G2Q-D Router: All versions
Cisco NCS 540X-6Z18G-SYS-A Router: All versions
Cisco NCS 540X-6Z18G-SYS-D Router: All versions
Cisco NCS 540X-8Z16G-SYS-A Router: All versions
Cisco NCS 540X-8Z16G-SYS-D Router: All versions
Cisco NCS 540X-ACC-SYS Router: All versions
Cisco NCS 560-4-SYS Router: All versions
Cisco NCS 560-4-SYS-E Router: All versions
Cisco NCS 560-4-SYS-E-CC Router: All versions
Cisco NCS 560-7-SYS Router: All versions
Cisco NCS 560-7-SYS-E Router: All versions
Cisco Network Convergence System 1000 Series: All versions
Cisco Network Convergence System 1001: All versions
Cisco Network Convergence System 1002: All versions
Cisco Network Convergence System 1004: All versions
Cisco Network Convergence System 1010: All versions
Cisco Network Convergence System 500 Series Routers: All versions
Cisco Network Convergence System 5000 Series: All versions
Cisco Network Convergence System 5001: All versions
Cisco Network Convergence System 5002: All versions
Cisco Network Convergence System 5011: All versions
Cisco Network Convergence System 540 Router: All versions
Cisco Network Convergence System 540 Series Routers: All versions
Cisco Network Convergence System 5500 Series: All versions
Cisco Network Convergence System 5501: All versions
Cisco Network Convergence System 5501-SE: All versions
Cisco Network Convergence System 5502: All versions
Cisco Network Convergence System 5502-SE: All versions
Cisco Network Convergence System 5504: All versions
Cisco Network Convergence System 5508: All versions
Cisco Network Convergence System 5516: All versions
Cisco Network Convergence System 55A1-24H: All versions
Cisco Network Convergence System 55A1-24Q6H-S: All versions
Cisco Network Convergence System 55A1-24Q6H-SS: All versions
Cisco Network Convergence System 55A1-36H: All versions
Cisco Network Convergence System 55A1-36H-SE: All versions
Cisco Network Convergence System 55A1-48Q6H: All versions
Cisco Network Convergence System 55A2-MOD-HD-S: All versions
Cisco Network Convergence System 55A2-MOD-S: All versions
Cisco Network Convergence System 55A2-MOD-SE-S: All versions
Cisco Network Convergence System 560 Router: All versions
Cisco Network Convergence System 560 Series Routers: All versions
Cisco Network Convergence System 5700 Series: All versions
Cisco Network Convergence System 57B1-5DSE-SYS: All versions
Cisco Network Convergence System 57B1-6D24-SYS: All versions
Cisco Network Convergence System 57C3-MOD: All versions
Cisco Network Convergence System NCS-57C1-48Q6-SYS: All versions
Cisco Network Convergence System NCS-57D2-18DD-SYS: All versions
External linksQ & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
