Security Advisory

Cisco Family Security Update Advisory (CVE-2024-20399)

  • Jul 02 2024

Overview

 

Cisco has released security updates to fix vulnerabilities in Cisco products. users of affected products are advised to update to the latest version.

 

Affected Products

 

CVE-2024-20399

The vulnerability affects the following Cisco products that are running a vulnerable release of Cisco NX-OS software at the time of release. to exploit the vulnerability, an attacker must have administrator privileges and access to certain configuration commands.

  • MDS 9000 Series Multilayer Switches
  • Nexus 3000 Series Switches
    • N3K-C3264C-E
    • N3k-c3172PQ-10GE
    • N3k-c3172PQ-10GE-XL
    • N3k-c3172TQ-10GT
    • N3k-c3548P-10GX
  • Nexus 5500 Platform Switches
  • Nexus 5600 Platform Switches
  • Nexus 6000 Series Switches
  • Nexus 7000 Series Switches
  • Nexus 9000 Series Switches in standalone NX-OS mode
    • N9K-C92348GC-X (Fixed in Cisco NX-OS software release 10.4.3 and later)

 

The following Cisco products are not affected by this vulnerability

  • For Cisco NX-OS software releases running in standalone NX-OS mode on Cisco Nexus 3000 series switches and Cisco Nexus 9000 series switches, the software does not grant additional privileges due to the availability of the bash-shell feature.
  • Cisco NX-OS software releases 9.3(5) and at least are not affected by this vulnerability, except for the above Cisco platforms.
  • Adaptive Security Appliance (ASA) Software
  • Firepower 1000 Series
  • Firepower 2100 Series
  • Firepower 4100 Series
  • Firepower 9300 Security Appliances
  • Firepower Threat Defense (FTD) Software
  • Secure Firewall 3100 Series
  • Secure Firewall 4200 Series
  • Secure Firewall Management Center (FMC) Software
  • UCS 6200 Series Fabric Interconnects
  • UCS 6300 Series Fabric Interconnects
  • UCS 6400 Series Fabric Interconnects
  • UCS 6500 Series Fabric Interconnects

 

Resolved Vulnerabilities

 

Avulnerability that allows an attacker with valid administrator credentials to the switch management console to escape the NX-OS CLI and execute arbitrary commands with root privileges on Linux-based operating systems. (CVE-2024-20399)

 

Vulnerability Patches

 

  • Please follow the instructions on the Referenced Sites [1], [2] to update to the latest Vulnerability Patches version.

 

Referenced Sites

 

[1] Cisco NX-OS Software CLI Command Injection Vulnerability

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cmd-injection-xD9OhyOP

[2] Cisco Software Checker

https://sec.cloudapps.cisco.com/security/center/softwarechecker.x

Tags:

Previous Post

Next Post