CVE-2024-20388
First published: Wed Oct 23 2024(Updated: )
A vulnerability in the password change feature of Cisco Firepower Management Center (FMC) software could allow an unauthenticated, remote attacker to determine valid user names on an affected device. This vulnerability is due to improper authentication of password update responses. An attacker could exploit this vulnerability by forcing a password reset on an affected device. A successful exploit could allow the attacker to determine valid user names in the unauthenticated response to a forced password reset.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Firepower Management Center Software | =6.4.0.17 | |
| Cisco Firepower Management Center Software | =6.4.0.18 | |
| Cisco Firepower Management Center Software | =6.6.7.2 | |
| Cisco Firepower Management Center Software | =7.0.6.1 | |
| Cisco Firepower Management Center Software | =7.0.6.2 | |
| Cisco Firepower Management Center Software | =7.2.5.1 | |
| Cisco Firepower Management Center Software | =7.2.5.2 | |
| Cisco Firepower Management Center Software | =7.2.6 | |
| Cisco Firepower Management Center Software | =7.2.7 | |
| Cisco Firepower Management Center Software | =7.2.8 | |
| Cisco Firepower Management Center Software | =7.2.8.1 | |
| Cisco Firepower Management Center Software | =7.4.0 | |
| Cisco Firepower Management Center Software | =7.4.1 | |
| Cisco Firepower Management Center Software | =7.4.1.1 | |
| Cisco Secure Firewall Management Center | =6.2.3 | |
| Cisco Secure Firewall Management Center | =6.2.3.1 | |
| Cisco Secure Firewall Management Center | =6.2.3.2 | |
| Cisco Secure Firewall Management Center | =6.2.3.3 | |
| Cisco Secure Firewall Management Center | =6.2.3.4 | |
| Cisco Secure Firewall Management Center | =6.2.3.5 | |
| Cisco Secure Firewall Management Center | =6.2.3.6 | |
| Cisco Secure Firewall Management Center | =6.2.3.7 | |
| Cisco Secure Firewall Management Center | =6.2.3.8 | |
| Cisco Secure Firewall Management Center | =6.2.3.9 | |
| Cisco Secure Firewall Management Center | =6.2.3.10 | |
| Cisco Secure Firewall Management Center | =6.2.3.11 | |
| Cisco Secure Firewall Management Center | =6.2.3.12 | |
| Cisco Secure Firewall Management Center | =6.2.3.13 | |
| Cisco Secure Firewall Management Center | =6.2.3.14 | |
| Cisco Secure Firewall Management Center | =6.2.3.15 | |
| Cisco Secure Firewall Management Center | =6.2.3.16 | |
| Cisco Secure Firewall Management Center | =6.2.3.17 | |
| Cisco Secure Firewall Management Center | =6.2.3.18 | |
| Cisco Secure Firewall Management Center | =6.4.0 | |
| Cisco Secure Firewall Management Center | =6.4.0.1 | |
| Cisco Secure Firewall Management Center | =6.4.0.2 | |
| Cisco Secure Firewall Management Center | =6.4.0.3 | |
| Cisco Secure Firewall Management Center | =6.4.0.4 | |
| Cisco Secure Firewall Management Center | =6.4.0.5 | |
| Cisco Secure Firewall Management Center | =6.4.0.6 | |
| Cisco Secure Firewall Management Center | =6.4.0.7 | |
| Cisco Secure Firewall Management Center | =6.4.0.8 | |
| Cisco Secure Firewall Management Center | =6.4.0.9 | |
| Cisco Secure Firewall Management Center | =6.4.0.10 | |
| Cisco Secure Firewall Management Center | =6.4.0.11 | |
| Cisco Secure Firewall Management Center | =6.4.0.12 | |
| Cisco Secure Firewall Management Center | =6.4.0.13 | |
| Cisco Secure Firewall Management Center | =6.4.0.14 | |
| Cisco Secure Firewall Management Center | =6.4.0.15 | |
| Cisco Secure Firewall Management Center | =6.4.0.16 | |
| Cisco Secure Firewall Management Center | =6.6.0 | |
| Cisco Secure Firewall Management Center | =6.6.0.1 | |
| Cisco Secure Firewall Management Center | =6.6.1 | |
| Cisco Secure Firewall Management Center | =6.6.3 | |
| Cisco Secure Firewall Management Center | =6.6.4 | |
| Cisco Secure Firewall Management Center | =6.6.5 | |
| Cisco Secure Firewall Management Center | =6.6.5.1 | |
| Cisco Secure Firewall Management Center | =6.6.5.2 | |
| Cisco Secure Firewall Management Center | =6.6.7 | |
| Cisco Secure Firewall Management Center | =6.6.7.1 | |
| Cisco Secure Firewall Management Center | =6.7.0 | |
| Cisco Secure Firewall Management Center | =6.7.0.1 | |
| Cisco Secure Firewall Management Center | =6.7.0.2 | |
| Cisco Secure Firewall Management Center | =6.7.0.3 | |
| Cisco Secure Firewall Management Center | =7.0.0 | |
| Cisco Secure Firewall Management Center | =7.0.0.1 | |
| Cisco Secure Firewall Management Center | =7.0.1 | |
| Cisco Secure Firewall Management Center | =7.0.1.1 | |
| Cisco Secure Firewall Management Center | =7.0.2 | |
| Cisco Secure Firewall Management Center | =7.0.2.1 | |
| Cisco Secure Firewall Management Center | =7.0.3 | |
| Cisco Secure Firewall Management Center | =7.0.4 | |
| Cisco Secure Firewall Management Center | =7.0.5 | |
| Cisco Secure Firewall Management Center | =7.0.6 | |
| Cisco Secure Firewall Management Center | =7.1.0 | |
| Cisco Secure Firewall Management Center | =7.1.0.1 | |
| Cisco Secure Firewall Management Center | =7.1.0.2 | |
| Cisco Secure Firewall Management Center | =7.1.0.3 | |
| Cisco Secure Firewall Management Center | =7.2.0 | |
| Cisco Secure Firewall Management Center | =7.2.0.1 | |
| Cisco Secure Firewall Management Center | =7.2.1 | |
| Cisco Secure Firewall Management Center | =7.2.2 | |
| Cisco Secure Firewall Management Center | =7.2.3 | |
| Cisco Secure Firewall Management Center | =7.2.3.1 | |
| Cisco Secure Firewall Management Center | =7.2.4 | |
| Cisco Secure Firewall Management Center | =7.2.4.1 | |
| Cisco Secure Firewall Management Center | =7.2.5 | |
| Cisco Secure Firewall Management Center | =7.3.0 | |
| Cisco Secure Firewall Management Center | =7.3.1 | |
| Cisco Secure Firewall Management Center | =7.3.1.1 | |
| Cisco Secure Firewall Management Center | =7.3.1.2 | |
| Cisco Firepower Threat Defense | =6.4.0.4 | |
| Cisco Firepower Threat Defense | =6.4.0.10 | |
| Cisco Firepower Threat Defense | =6.4.0.12 | |
| Cisco Firepower Threat Defense | =6.4.0.14 | |
| Cisco Firepower Threat Defense | =6.4.0.16 | |
| Cisco Firepower Threat Defense | =6.4.0.18 | |
| Cisco Firepower Threat Defense | =6.6.5.1 | |
| Cisco Firepower Threat Defense | =6.6.7 | |
| Cisco Firepower Threat Defense | =6.7.0.2 | |
| Cisco Firepower Threat Defense | =7.1.0.1 | |
| Cisco Firepower Threat Defense | =7.1.0.3 | |
| Cisco Firepower Threat Defense | =7.2.2 | |
| Cisco Firepower Threat Defense | =7.4.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-20388?
CVE-2024-20388 has a high severity rating due to its potential for exposing valid usernames through the password change feature.
How do I fix CVE-2024-20388?
To remediate CVE-2024-20388, apply the latest security updates released by Cisco for affected versions of the Firepower Management Center.
Which versions of Cisco Firepower Management Center are affected by CVE-2024-20388?
CVE-2024-20388 affects versions 6.4.0.17, 6.4.0.18, 6.6.7.2, 7.0.6.1, 7.0.6.2, 7.2.5.1, 7.2.5.2, 7.2.6, 7.2.7, 7.2.8, and various other versions up to 7.4.1.
What attack methods are possible with CVE-2024-20388?
An attacker can exploit CVE-2024-20388 to perform unauthorized user enumeration via the password change feature.
Who is vulnerable to CVE-2024-20388?
Any organization using the affected versions of Cisco Firepower Management Center is vulnerable to CVE-2024-20388.
- agent/weakness
- agent/references
- agent/description
- agent/type
- agent/first-publish-date
- agent/severity
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco firepower management center software
- version/cisco firepower management center software/6.4.0.17
- version/cisco firepower management center software/6.4.0.18
- version/cisco firepower management center software/6.6.7.2
- version/cisco firepower management center software/7.0.6.1
- version/cisco firepower management center software/7.0.6.2
- version/cisco firepower management center software/7.2.5.1
- version/cisco firepower management center software/7.2.5.2
- version/cisco firepower management center software/7.2.6
- version/cisco firepower management center software/7.2.7
- version/cisco firepower management center software/7.2.8
- version/cisco firepower management center software/7.2.8.1
- version/cisco firepower management center software/7.4.0
- version/cisco firepower management center software/7.4.1
- version/cisco firepower management center software/7.4.1.1
- canonical/cisco secure firewall management center
- version/cisco secure firewall management center/6.2.3
- version/cisco secure firewall management center/6.2.3.1
- version/cisco secure firewall management center/6.2.3.2
- version/cisco secure firewall management center/6.2.3.3
- version/cisco secure firewall management center/6.2.3.4
- version/cisco secure firewall management center/6.2.3.5
- version/cisco secure firewall management center/6.2.3.6
- version/cisco secure firewall management center/6.2.3.7
- version/cisco secure firewall management center/6.2.3.8
- version/cisco secure firewall management center/6.2.3.9
- version/cisco secure firewall management center/6.2.3.10
- version/cisco secure firewall management center/6.2.3.11
- version/cisco secure firewall management center/6.2.3.12
- version/cisco secure firewall management center/6.2.3.13
- version/cisco secure firewall management center/6.2.3.14
- version/cisco secure firewall management center/6.2.3.15
- version/cisco secure firewall management center/6.2.3.16
- version/cisco secure firewall management center/6.2.3.17
- version/cisco secure firewall management center/6.2.3.18
- version/cisco secure firewall management center/6.4.0
- version/cisco secure firewall management center/6.4.0.1
- version/cisco secure firewall management center/6.4.0.2
- version/cisco secure firewall management center/6.4.0.3
- version/cisco secure firewall management center/6.4.0.4
- version/cisco secure firewall management center/6.4.0.5
- version/cisco secure firewall management center/6.4.0.6
- version/cisco secure firewall management center/6.4.0.7
- version/cisco secure firewall management center/6.4.0.8
- version/cisco secure firewall management center/6.4.0.9
- version/cisco secure firewall management center/6.4.0.10
- version/cisco secure firewall management center/6.4.0.11
- version/cisco secure firewall management center/6.4.0.12
- version/cisco secure firewall management center/6.4.0.13
- version/cisco secure firewall management center/6.4.0.14
- version/cisco secure firewall management center/6.4.0.15
- version/cisco secure firewall management center/6.4.0.16
- version/cisco secure firewall management center/6.6.0
- version/cisco secure firewall management center/6.6.0.1
- version/cisco secure firewall management center/6.6.1
- version/cisco secure firewall management center/6.6.3
- version/cisco secure firewall management center/6.6.4
- version/cisco secure firewall management center/6.6.5
- version/cisco secure firewall management center/6.6.5.1
- version/cisco secure firewall management center/6.6.5.2
- version/cisco secure firewall management center/6.6.7
- version/cisco secure firewall management center/6.6.7.1
- version/cisco secure firewall management center/6.7.0
- version/cisco secure firewall management center/6.7.0.1
- version/cisco secure firewall management center/6.7.0.2
- version/cisco secure firewall management center/6.7.0.3
- version/cisco secure firewall management center/7.0.0
- version/cisco secure firewall management center/7.0.0.1
- version/cisco secure firewall management center/7.0.1
- version/cisco secure firewall management center/7.0.1.1
- version/cisco secure firewall management center/7.0.2
- version/cisco secure firewall management center/7.0.2.1
- version/cisco secure firewall management center/7.0.3
- version/cisco secure firewall management center/7.0.4
- version/cisco secure firewall management center/7.0.5
- version/cisco secure firewall management center/7.0.6
- version/cisco secure firewall management center/7.1.0
- version/cisco secure firewall management center/7.1.0.1
- version/cisco secure firewall management center/7.1.0.2
- version/cisco secure firewall management center/7.1.0.3
- version/cisco secure firewall management center/7.2.0
- version/cisco secure firewall management center/7.2.0.1
- version/cisco secure firewall management center/7.2.1
- version/cisco secure firewall management center/7.2.2
- version/cisco secure firewall management center/7.2.3
- version/cisco secure firewall management center/7.2.3.1
- version/cisco secure firewall management center/7.2.4
- version/cisco secure firewall management center/7.2.4.1
- version/cisco secure firewall management center/7.2.5
- version/cisco secure firewall management center/7.3.0
- version/cisco secure firewall management center/7.3.1
- version/cisco secure firewall management center/7.3.1.1
- version/cisco secure firewall management center/7.3.1.2
- canonical/cisco firepower threat defense
- version/cisco firepower threat defense/6.4.0.4
- version/cisco firepower threat defense/6.4.0.10
- version/cisco firepower threat defense/6.4.0.12
- version/cisco firepower threat defense/6.4.0.14
- version/cisco firepower threat defense/6.4.0.16
- version/cisco firepower threat defense/6.4.0.18
- version/cisco firepower threat defense/6.6.5.1
- version/cisco firepower threat defense/6.6.7
- version/cisco firepower threat defense/6.7.0.2
- version/cisco firepower threat defense/7.1.0.1
- version/cisco firepower threat defense/7.1.0.3
- version/cisco firepower threat defense/7.2.2
- version/cisco firepower threat defense/7.4.1