CVE-2024-20476

{"id": "CVE-2024-20476", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "psirt@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.2}]}, "published": "2024-11-06T17:15:15.337", "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-vulns-AF544ED5", "tags": ["Vendor Advisory"], "source": "psirt@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "psirt@cisco.com", "description": [{"lang": "en", "value": "CWE-602"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to bypass the authorization mechanisms for specific file management functions.\r\n\r\nThis vulnerability is due to lack of server-side validation of Administrator permissions. An attacker could exploit this vulnerability by submitting a crafted HTTP request to an affected system. A successful exploit could allow the attacker to upload files to a location that should be restricted. To exploit this vulnerability, an attacker would need valid Read-Only Administrator credentials."}, {"lang": "es", "value": "Una vulnerabilidad en la interfaz de administraci\u00f3n basada en web de Cisco ISE podr\u00eda permitir que un atacante remoto autenticado eluda los mecanismos de autorizaci\u00f3n para funciones espec\u00edficas de administraci\u00f3n de archivos. Esta vulnerabilidad se debe a la falta de validaci\u00f3n del lado del servidor de los permisos de administrador. Un atacante podr\u00eda aprovechar esta vulnerabilidad enviando una solicitud HTTP manipulada a un sistema afectado. Una explotaci\u00f3n exitosa podr\u00eda permitir al atacante cargar archivos a una ubicaci\u00f3n que deber\u00eda estar restringida. Para aprovechar esta vulnerabilidad, un atacante necesitar\u00eda credenciales de administrador de solo lectura v\u00e1lidas."}], "lastModified": "2025-04-04T17:19:47.780", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:identity_services_engine:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "742B3761-9FD6-4E67-BDDD-D4DD2C3111D2", "versionEndExcluding": "3.1"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A789B44-7E6C-4FE9-BD40-702A871AB8AC"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "93920663-445E-4456-A905-81CEC6CA1833"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33DA5BB8-4CFE-44BD-9CEB-BC26577E8477"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3AEFA85-66B5-4145-A4AD-96D1FF86B46D"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A6A0697-6A9E-48EF-82D8-36C75E0CDFDC"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E939B65A-7912-4C36-8799-03A1526D7BD3"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "833B438F-0869-4C0D-9952-750C00702E8D"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8B2588D-01F9-450B-B2E3-ADC4125E354E"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E41016C0-19E6-4BCC-A8DD-F6C9A2B0003E"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "654E946A-07C5-4036-BC54-85EF42B808DD"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7932D5D5-83E1-4BEF-845A-D0783D4BB750"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B818846-4A6E-4256-B344-281E8C786C43"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A44858A2-922A-425A-8B38-0C47DB911A3C"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53484A32-757B-42F8-B655-554C34222060"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0CCAC61F-C273-49B3-A631-31D3AE3EB148"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51AEFCE6-FB4A-4B1C-A23D-83CC3CF3FBBD"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B452B4F0-8510-475E-9AE8-B48FABB4D7D3"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1B9C2C1-59A4-49A0-9B74-83CCB063E55D"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFD29A0B-0D75-4EAB-BCE0-79450EC75DD0"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6C94CC4-CC08-4DAF-A606-FDAFC92720A9"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB069EA3-7B8C-42B5-8035-2EE5ED3F56E4"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@cisco.com"}