#VU87518 Incorrect Privilege Assignment in Cisco Systems, Inc products - CVE-2024-20320
Published: March 14, 2024
Vulnerability identifier: #VU87518
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2024-20320
CWE-ID: CWE-266
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Cisco IOS XR
IOS XRd Control Plane
IOS XRd vRouter
Cisco 8000 Series Routers
Cisco 8201 Router
Cisco 8202 Router
Cisco 8808 Router
Cisco 8812 Router
Cisco 8818 Router
Cisco NCS 540-12Z20G-SYS-A Router
Cisco NCS 540-12Z20G-SYS-D Router
Cisco NCS 540-24Q8L2DD-SYS Router
Cisco NCS 540-28Z4C-SYS-A Router
Cisco NCS 540-28Z4C-SYS-D Router
Cisco NCS 540-6Z14S-SYS-D Router
Cisco NCS 540-6Z18G-SYS-D Router
Cisco NCS 540-FH-AGG Router
Cisco NCS 540-FH-CSR-SYS Router
Cisco NCS 540X-12Z16G-SYS-A Router
Cisco NCS 540X-12Z16G-SYS-D Router
Cisco NCS 540X-16Z4G8Q2C-A Router
Cisco NCS 540X-16Z4G8Q2C-D Router
Cisco NCS 540X-16Z8Q2C-D Router
Cisco NCS 540X-4Z14G2Q-A Router
Cisco NCS 540X-4Z14G2Q-D Router
Cisco NCS 540X-6Z18G-SYS-A Router
Cisco NCS 540X-6Z18G-SYS-D Router
Cisco NCS 540X-8Z16G-SYS-A Router
Cisco NCS 540X-8Z16G-SYS-D Router
Cisco Network Convergence System 1010
Cisco Network Convergence System 500 Series Routers
Cisco Network Convergence System 540 Router
Cisco Network Convergence System 540 Series Routers
Cisco Network Convergence System 5700 Series
Cisco Network Convergence System 57B1-5DSE-SYS
Cisco Network Convergence System 57B1-6D24-SYS
Cisco Network Convergence System NCS-57C1-48Q6-SYS
Cisco Network Convergence System NCS-57D2-18DD-SYS
Cisco Network Convergence System 1000 Series
Cisco IOS XR
IOS XRd Control Plane
IOS XRd vRouter
Cisco 8000 Series Routers
Cisco 8201 Router
Cisco 8202 Router
Cisco 8808 Router
Cisco 8812 Router
Cisco 8818 Router
Cisco NCS 540-12Z20G-SYS-A Router
Cisco NCS 540-12Z20G-SYS-D Router
Cisco NCS 540-24Q8L2DD-SYS Router
Cisco NCS 540-28Z4C-SYS-A Router
Cisco NCS 540-28Z4C-SYS-D Router
Cisco NCS 540-6Z14S-SYS-D Router
Cisco NCS 540-6Z18G-SYS-D Router
Cisco NCS 540-FH-AGG Router
Cisco NCS 540-FH-CSR-SYS Router
Cisco NCS 540X-12Z16G-SYS-A Router
Cisco NCS 540X-12Z16G-SYS-D Router
Cisco NCS 540X-16Z4G8Q2C-A Router
Cisco NCS 540X-16Z4G8Q2C-D Router
Cisco NCS 540X-16Z8Q2C-D Router
Cisco NCS 540X-4Z14G2Q-A Router
Cisco NCS 540X-4Z14G2Q-D Router
Cisco NCS 540X-6Z18G-SYS-A Router
Cisco NCS 540X-6Z18G-SYS-D Router
Cisco NCS 540X-8Z16G-SYS-A Router
Cisco NCS 540X-8Z16G-SYS-D Router
Cisco Network Convergence System 1010
Cisco Network Convergence System 500 Series Routers
Cisco Network Convergence System 540 Router
Cisco Network Convergence System 540 Series Routers
Cisco Network Convergence System 5700 Series
Cisco Network Convergence System 57B1-5DSE-SYS
Cisco Network Convergence System 57B1-6D24-SYS
Cisco Network Convergence System NCS-57C1-48Q6-SYS
Cisco Network Convergence System NCS-57D2-18DD-SYS
Cisco Network Convergence System 1000 Series
Software vendor:
Cisco Systems, Inc
Cisco Systems, Inc
Description
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to insufficient validation of arguments that are included with the SSH client CLI command. A local user can elevate privileges to root on the target device.
Remediation
Install updates from vendor's website.