CVE-2024-20383
CVSS V2 None
CVSS V3 None
Description
A vulnerability in the Cisco Crosswork NSO CLI and the ConfD CLI could allow an authenticated, low-privileged, local attacker to elevate privileges to root on the underlying operating system.
The vulnerability is due to an incorrect privilege assignment when specific CLI commands are used. An attacker could exploit this vulnerability by executing an affected CLI command. A successful exploit could allow the attacker to elevate privileges to root on the underlying operating system.
Overview
- CVE ID
- CVE-2024-20383
- Assigner
- cisco
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-05-15T17:59:49.921Z
- Last Modified Date
- 2024-06-04T17:40:43.042Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-20383 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20383 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-06-26 04:42:09 | Added to TrackCVE |