CVE-2024-20371

Summary

A vulnerability in the access control list (ACL) programming of Cisco Nexus 3550-F Switches could allow an unauthenticated, remote attacker to send traffic that should be blocked to the management interface of an affected device. 

This vulnerability exists because ACL deny rules are not properly enforced at the time of device reboot. An attacker could exploit this vulnerability by attempting to send traffic to the management interface of an affected device. A successful exploit could allow the attacker to send traffic to the management interface of the affected device.

Affected Software

VendorProductVersion RangeStatus
CiscoCisco Nexus 3550 System Software3550-F_1.11.3affected
CiscoCisco Nexus 3550 System Software3550-F_1.12.0affected
CiscoCisco Nexus 3550 System Software3550-F_1.16.0affected
CiscoCisco Nexus 3550 System Software3550-F_1.17.1affected
CiscoCisco Nexus 3550 System Software3550-F_1.11.1affected
CiscoCisco Nexus 3550 System Software3550-F_1.11.2affected
CiscoCisco Nexus 3550 System Software3550-F_1.15.0affected
CiscoCisco Nexus 3550 System Software3550-F_1.13.0affected
CiscoCisco Nexus 3550 System Software3550-F_1.14.0affected

Weaknesses

  • CWE-264: Permissions, Privileges, and Access Control

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References