What is the severity of CVE-2024-20320?

CVE-2024-20320 has a high severity rating due to its potential for privilege escalation by authenticated local attackers.

How do I fix CVE-2024-20320?

To remediate CVE-2024-20320, upgrade to the latest version of Cisco IOS XR Software or apply the available patches provided by Cisco.

Who is affected by CVE-2024-20320?

CVE-2024-20320 affects Cisco 8000 Series Routers and Cisco Network Convergence System (NCS) 540 and 5700 Series Routers running vulnerable versions of IOS XR Software.

What type of attack can exploit CVE-2024-20320?

CVE-2024-20320 can be exploited by an authenticated, local attacker seeking to elevate their privileges on the affected devices.

When was CVE-2024-20320 disclosed?

CVE-2024-20320 was disclosed as part of a security advisory by Cisco related to vulnerabilities in their networking products.

Vulnerability/
CVE-2024-20320

high

7.8

CWE

266

13/3/2024

16/8/2024

CVE-2024-20320

First published: Wed Mar 13 2024(Updated: )

A vulnerability in the SSH client feature of Cisco IOS XR Software for Cisco 8000 Series Routers and Cisco Network Convergence System (NCS) 540 Series and 5700 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient validation of arguments that are included with the SSH client CLI command. An attacker with low-privileged access to an affected device could exploit this vulnerability by issuing a crafted SSH client command to the CLI. A successful exploit could allow the attacker to elevate privileges to root on the affected device.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco IOS XRv 9000
Cisco 8000 Series Routers
Cisco Network Convergence System 540 Series
Cisco Network Convergence System (NCS) 5700 Series Routers

Never miss a vulnerability like this again

Reference Links

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-ssh-privesc-eWDMKew3

Frequently Asked Questions

What is the severity of CVE-2024-20320?
CVE-2024-20320 has a high severity rating due to its potential for privilege escalation by authenticated local attackers.
How do I fix CVE-2024-20320?
To remediate CVE-2024-20320, upgrade to the latest version of Cisco IOS XR Software or apply the available patches provided by Cisco.
Who is affected by CVE-2024-20320?
CVE-2024-20320 affects Cisco 8000 Series Routers and Cisco Network Convergence System (NCS) 540 and 5700 Series Routers running vulnerable versions of IOS XR Software.
What type of attack can exploit CVE-2024-20320?
CVE-2024-20320 can be exploited by an authenticated, local attacker seeking to elevate their privileges on the affected devices.
When was CVE-2024-20320 disclosed?
CVE-2024-20320 was disclosed as part of a security advisory by Cisco related to vulnerabilities in their networking products.

agent/weakness
agent/references
agent/description
agent/type
agent/first-publish-date
collector/nvd-api
source/NVD
agent/severity
agent/author
agent/event
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/tags
agent/softwarecombine
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco ios xrv 9000
canonical/cisco 8000 series routers
canonical/cisco network convergence system 540 series
canonical/cisco network convergence system (ncs) 5700 series routers

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.