Improper Authorization in Cisco Expressway Edge - CVE-2024-20497
Published: September 5, 2024
Cisco Expressway Edge
Detailed vulnerability description
The vulnerability allows a remote attacker to bypass authorization checks.
The vulnerability exists due to inadequate authorization checks for Mobile and Remote Access (MRA) users. A remote user can intercept calls that are destined for a particular phone number or make phone calls and have that phone number appear on the caller ID.