CVE-2024-20332: SSRF
First published: Wed Apr 03 2024(Updated: )
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a server-side request forgery (SSRF) attack through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to send arbitrary network requests that are sourced from the affected device. To successfully exploit this vulnerability, the attacker would need valid Super Admin credentials.
Credit: psirt@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Identity Services Engine (ISE) | ||
| Cisco Identity Services Engine (ISE) | =3.2.0 | |
| Cisco Identity Services Engine (ISE) | =3.2.0-patch1 | |
| Cisco Identity Services Engine (ISE) | =3.2.0-patch2 | |
| Cisco Identity Services Engine (ISE) | =3.2.0-patch3 | |
| Cisco Identity Services Engine (ISE) | =3.2.0-patch4 | |
| Cisco Identity Services Engine (ISE) | =3.3.0 | |
| Cisco Identity Services Engine (ISE) | =3.3.0-patch1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-20332?
CVE-2024-20332 has been classified as a critical vulnerability due to its potential for server-side request forgery attacks.
How do I fix CVE-2024-20332?
To address CVE-2024-20332, Cisco recommends applying the appropriate security updates or patches for the Cisco Identity Services Engine.
Who is affected by CVE-2024-20332?
CVE-2024-20332 affects authenticated users of the Cisco Identity Services Engine's web-based management interface.
What types of attacks can be conducted via CVE-2024-20332?
CVE-2024-20332 allows an authenticated attacker to perform server-side request forgery attacks.
Is CVE-2024-20332 being actively exploited?
As of now, there are no public reports confirming active exploitation of CVE-2024-20332, but it remains a significant security concern.
- agent/references
- agent/weakness
- agent/type
- agent/description
- agent/first-publish-date
- agent/author
- agent/severity
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- vendor/cisco
- canonical/cisco identity services engine (ise)
- version/cisco identity services engine (ise)/3.2.0
- version/cisco identity services engine (ise)/3.2.0-patch1
- version/cisco identity services engine (ise)/3.2.0-patch2
- version/cisco identity services engine (ise)/3.2.0-patch3
- version/cisco identity services engine (ise)/3.2.0-patch4
- version/cisco identity services engine (ise)/3.3.0
- version/cisco identity services engine (ise)/3.3.0-patch1