What is the severity of CVE-2024-20379?

CVE-2024-20379 has a medium severity rating that allows authenticated, remote attackers to read arbitrary files.

Which software versions are affected by CVE-2024-20379?

CVE-2024-20379 affects Cisco Firepower Management Center Software versions 7.4.0, 7.4.1, 7.4.1.1 and Cisco Secure Firewall Management Center versions 7.3.0, 7.3.1, 7.3.1.1, and 7.3.1.2.

How do I fix CVE-2024-20379?

To fix CVE-2024-20379, upgrade the affected Cisco Secure Firewall Management Center Software to the latest patched version.

Can CVE-2024-20379 be exploited remotely?

Yes, CVE-2024-20379 can be exploited by remote authenticated attackers.

What kind of files can be accessed due to CVE-2024-20379?

CVE-2024-20379 allows attackers to read arbitrary files from the underlying operating system.

Vulnerability/
CVE-2024-20379

medium

6.5

CWE

36 22

23/10/2024

26/11/2024

CVE-2024-20379: Path Traversal

First published: Wed Oct 23 2024(Updated: )

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software, formerly Firepower Management Center Software, could allow an authenticated, remote attacker to read arbitrary files from the underlying operating system. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to read arbitrary files on the underlying operating system of the affected device. The attacker would need valid user credentials to exploit this vulnerability.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Firepower Management Center Software	=7.4.0
Cisco Firepower Management Center Software	=7.4.1
Cisco Firepower Management Center Software	=7.4.1.1
Cisco Secure Firewall Management Center	=7.3.0
Cisco Secure Firewall Management Center	=7.3.1
Cisco Secure Firewall Management Center	=7.3.1.1
Cisco Secure Firewall Management Center	=7.3.1.2

Never miss a vulnerability like this again

Reference Links

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-file-read-5q4mQRn

Frequently Asked Questions

What is the severity of CVE-2024-20379?
CVE-2024-20379 has a medium severity rating that allows authenticated, remote attackers to read arbitrary files.
Which software versions are affected by CVE-2024-20379?
CVE-2024-20379 affects Cisco Firepower Management Center Software versions 7.4.0, 7.4.1, 7.4.1.1 and Cisco Secure Firewall Management Center versions 7.3.0, 7.3.1, 7.3.1.1, and 7.3.1.2.
How do I fix CVE-2024-20379?
To fix CVE-2024-20379, upgrade the affected Cisco Secure Firewall Management Center Software to the latest patched version.
Can CVE-2024-20379 be exploited remotely?
Yes, CVE-2024-20379 can be exploited by remote authenticated attackers.
What kind of files can be accessed due to CVE-2024-20379?
CVE-2024-20379 allows attackers to read arbitrary files from the underlying operating system.

agent/references
agent/description
agent/type
agent/first-publish-date
agent/severity
agent/author
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/event
agent/softwarecombine
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco firepower management center software
version/cisco firepower management center software/7.4.0
version/cisco firepower management center software/7.4.1
version/cisco firepower management center software/7.4.1.1
canonical/cisco secure firewall management center
version/cisco secure firewall management center/7.3.0
version/cisco secure firewall management center/7.3.1
version/cisco secure firewall management center/7.3.1.1
version/cisco secure firewall management center/7.3.1.2