Cisco behebt Root-Eskalationsschwachstelle mit öffentlichem Exploit-Code

Teilen:

Cisco has fixed a command injection vulnerability with public exploit code that lets attackers escalate privileges to root on vulnerable systems.

Tracked as CVE-2024-20469, the security flaw was found in Cisco’s Identity Services Engine (ISE) solution, an identity-based network access control and policy enforcement software that enables network device administration and endpoint access control in enterprise environments.

This OS command injection vulnerability is caused by insufficient validation of user-supplied input. Local attackers can exploit this weakness by submitting maliciously crafted CLI commands in low-complexity attacks that don’t require user interaction.

However, as Cisco explains, threat actors can only exploit this flaw successfully if they already have Administrator privileges on unpatched systems.

“A vulnerability in specific CLI commands in Cisco Identity Services Engine (ISE) could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root,” the company warned in a security advisory published on Wednesday.

“The Cisco PSIRT is aware that proof-of-concept exploit code is available for the vulnerability that is described in this advisory.”

Cisco ISE Release First Fixed Release
3.1 and earlier Not affected
3.2 3.2P7 (Sep 2024)
3.3 3.3P4 (Oct 2024)
3.4 Not affected

So far, the company has yet to discover evidence of attackers exploiting this security vulnerability in the wild.

ADVERTISING

Cisco also warned customers today that it removed a backdoor account in its Smart Licensing Utility Windows software that attackers can use to log into unpatched systems with administrative privileges.

In April, it released security patches for an Integrated Management Controller (IMC) vulnerability (CVE-2024-20295) with publicly available exploit code that also allows local attackers to escalate privileges to root.

Another critical flaw (CVE-2024-20401), which lets threat actors add rogue root users and permanently crash Security Email Gateway (SEG) appliances via malicious emails, was patched last month.

The same week, it warned of a maximum-severity vulnerability that lets attackers change any user password on vulnerable Cisco Smart Software Manager On-Prem (Cisco SSM On-Prem) license servers, including administrators.

Sergiu Gatlan

Kommentar verfassen

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert

lade-bild
London, GB
5:06 am, Jan. 24, 2025
Wetter-Symbol 10°C
L: 9° | H: 10°
moderate rain
Luftfeuchtigkeit: 89 %
Druck: 993 mb
Wind: 20 mph SW
Windböe: 37 mph
UV-Index: 0
Niederschlag: 2.05 mm
Wolken: 100%
Regen Chance: 0%
Sichtbarkeit: 10 km
Sonnenaufgang: 7:49 am
Sonnenuntergang: 4:35 pm
TäglichStündlich
Tägliche VorhersageStündliche Vorhersage
Today 9:00 pm
Wetter-Symbol
9° | 10°°C 1 mm 100% 24 mph 89 % 1002 mb 0 mm/h
Tomorrow 9:00 pm
Wetter-Symbol
3° | 5°°C 1 mm 100% 11 mph 90 % 1010 mb 0 mm/h
So. Jan. 26 9:00 pm
Wetter-Symbol
2° | 7°°C 1 mm 100% 15 mph 97 % 1009 mb 0 mm/h
Mo. Jan. 27 9:00 pm
Wetter-Symbol
6° | 8°°C 1 mm 100% 12 mph 98 % 991 mb 0 mm/h
Di. Jan. 28 9:00 pm
Wetter-Symbol
5° | 7°°C 1 mm 100% 15 mph 92 % 999 mb 0 mm/h
Today 6:00 am
Wetter-Symbol
10° | 10°°C 1 mm 100% 24 mph 89 % 992 mb 0 mm/h
Today 9:00 am
Wetter-Symbol
10° | 11°°C 1 mm 100% 15 mph 86 % 992 mb 0 mm/h
Today 12:00 pm
Wetter-Symbol
9° | 9°°C 0.8 mm 80% 17 mph 69 % 995 mb 0 mm/h
Today 3:00 pm
Wetter-Symbol
8° | 8°°C 0 mm 0% 13 mph 50 % 999 mb 0 mm/h
Today 6:00 pm
Wetter-Symbol
7° | 7°°C 0 mm 0% 9 mph 56 % 1002 mb 0 mm/h
Today 9:00 pm
Wetter-Symbol
6° | 6°°C 0 mm 0% 5 mph 63 % 1002 mb 0 mm/h
Tomorrow 12:00 am
Wetter-Symbol
5° | 5°°C 0 mm 0% 4 mph 68 % 1000 mb 0 mm/h
Tomorrow 3:00 am
Wetter-Symbol
5° | 5°°C 0 mm 0% 3 mph 84 % 999 mb 0 mm/h
Name Preis24H (%)
Bitcoin(BTC)
€100,496.39
2.47%
Ethereum(ETH)
€3,199.81
3.93%
XRP(XRP)
€3.02
0.84%
Fesseln(USDT)
€0.96
0.06%
Solana(SOL)
€244.97
2.74%
Dogecoin(DOGE)
€0.339076
0.49%
USDC(USDC)
€0.96
0.00%
Shiba Inu(SHIB)
€0.000019
0.45%
Pepe(PEPE)
€0.000014
2.87%
Peanut das Eichhörnchen(PNUT)
€0.333452
-4.27%
Nach oben scrollen