Lucene search
HistoryMar 27, 2024 - 5:15 p.m.
CVE-2024-20316
cisco
ios xe software
vulnerability
dmi services
unauthenticated
remote access
protected resources
ipv4 access control list
netconf
restconf
protocol
5.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
7 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
A vulnerability in the data model interface (DMI) services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access resources that should have been protected by a configured IPv4 access control list (ACL).
This vulnerability is due to improper handling of error conditions when a successfully authorized device administrator updates an IPv4 ACL using the NETCONF or RESTCONF protocol, and the update would reorder access control entries (ACEs) in the updated ACL. An attacker could exploit this vulnerability by accessing resources that should have been protected across an affected device.
CNA Affected
[
{
"vendor": "Cisco",
"product": "Cisco IOS XE Software",
"versions": [
{
"version": "16.3.1",
"status": "affected"
},
{
"version": "16.3.2",
"status": "affected"
},
{
"version": "16.3.3",
"status": "affected"
},
{
"version": "16.3.1a",
"status": "affected"
},
{
"version": "16.3.4",
"status": "affected"
},
{
"version": "16.3.5",
"status": "affected"
},
{
"version": "16.3.5b",
"status": "affected"
},
{
"version": "16.3.6",
"status": "affected"
},
{
"version": "16.3.7",
"status": "affected"
},
{
"version": "16.3.8",
"status": "affected"
},
{
"version": "16.3.9",
"status": "affected"
},
{
"version": "16.3.10",
"status": "affected"
},
{
"version": "16.3.11",
"status": "affected"
},
{
"version": "16.4.1",
"status": "affected"
},
{
"version": "16.4.2",
"status": "affected"
},
{
"version": "16.4.3",
"status": "affected"
},
{
"version": "16.5.1",
"status": "affected"
},
{
"version": "16.5.1a",
"status": "affected"
},
{
"version": "16.5.1b",
"status": "affected"
},
{
"version": "16.5.2",
"status": "affected"
},
{
"version": "16.5.3",
"status": "affected"
},
{
"version": "16.6.1",
"status": "affected"
},
{
"version": "16.6.2",
"status": "affected"
},
{
"version": "16.6.3",
"status": "affected"
},
{
"version": "16.6.4",
"status": "affected"
},
{
"version": "16.6.5",
"status": "affected"
},
{
"version": "16.6.4a",
"status": "affected"
},
{
"version": "16.6.5a",
"status": "affected"
},
{
"version": "16.6.6",
"status": "affected"
},
{
"version": "16.6.7",
"status": "affected"
},
{
"version": "16.6.8",
"status": "affected"
},
{
"version": "16.6.9",
"status": "affected"
},
{
"version": "16.6.10",
"status": "affected"
},
{
"version": "16.7.1",
"status": "affected"
},
{
"version": "16.7.2",
"status": "affected"
},
{
"version": "16.7.3",
"status": "affected"
},
{
"version": "16.8.1",
"status": "affected"
},
{
"version": "16.8.1a",
"status": "affected"
},
{
"version": "16.8.1b",
"status": "affected"
},
{
"version": "16.8.1s",
"status": "affected"
},
{
"version": "16.8.1c",
"status": "affected"
},
{
"version": "16.8.2",
"status": "affected"
},
{
"version": "16.8.3",
"status": "affected"
},
{
"version": "16.9.1",
"status": "affected"
},
{
"version": "16.9.2",
"status": "affected"
},
{
"version": "16.9.1a",
"status": "affected"
},
{
"version": "16.9.1b",
"status": "affected"
},
{
"version": "16.9.1s",
"status": "affected"
},
{
"version": "16.9.3",
"status": "affected"
},
{
"version": "16.9.4",
"status": "affected"
},
{
"version": "16.9.3a",
"status": "affected"
},
{
"version": "16.9.5",
"status": "affected"
},
{
"version": "16.9.5f",
"status": "affected"
},
{
"version": "16.9.6",
"status": "affected"
},
{
"version": "16.9.7",
"status": "affected"
},
{
"version": "16.9.8",
"status": "affected"
},
{
"version": "16.10.1",
"status": "affected"
},
{
"version": "16.10.1a",
"status": "affected"
},
{
"version": "16.10.1b",
"status": "affected"
},
{
"version": "16.10.1s",
"status": "affected"
},
{
"version": "16.10.1e",
"status": "affected"
},
{
"version": "16.10.2",
"status": "affected"
},
{
"version": "16.10.3",
"status": "affected"
},
{
"version": "16.11.1",
"status": "affected"
},
{
"version": "16.11.1a",
"status": "affected"
},
{
"version": "16.11.1b",
"status": "affected"
},
{
"version": "16.11.2",
"status": "affected"
},
{
"version": "16.11.1s",
"status": "affected"
},
{
"version": "16.12.1",
"status": "affected"
},
{
"version": "16.12.1s",
"status": "affected"
},
{
"version": "16.12.1a",
"status": "affected"
},
{
"version": "16.12.1c",
"status": "affected"
},
{
"version": "16.12.2",
"status": "affected"
},
{
"version": "16.12.2a",
"status": "affected"
},
{
"version": "16.12.3",
"status": "affected"
},
{
"version": "16.12.8",
"status": "affected"
},
{
"version": "16.12.2s",
"status": "affected"
},
{
"version": "16.12.1t",
"status": "affected"
},
{
"version": "16.12.4",
"status": "affected"
},
{
"version": "16.12.3s",
"status": "affected"
},
{
"version": "16.12.3a",
"status": "affected"
},
{
"version": "16.12.4a",
"status": "affected"
},
{
"version": "16.12.5",
"status": "affected"
},
{
"version": "16.12.6",
"status": "affected"
},
{
"version": "16.12.5a",
"status": "affected"
},
{
"version": "16.12.5b",
"status": "affected"
},
{
"version": "16.12.6a",
"status": "affected"
},
{
"version": "16.12.7",
"status": "affected"
},
{
"version": "16.12.9",
"status": "affected"
},
{
"version": "16.12.10",
"status": "affected"
},
{
"version": "16.12.10a",
"status": "affected"
},
{
"version": "16.12.11",
"status": "affected"
},
{
"version": "17.1.1",
"status": "affected"
},
{
"version": "17.1.1a",
"status": "affected"
},
{
"version": "17.1.1s",
"status": "affected"
},
{
"version": "17.1.1t",
"status": "affected"
},
{
"version": "17.1.3",
"status": "affected"
},
{
"version": "17.2.1",
"status": "affected"
},
{
"version": "17.2.1r",
"status": "affected"
},
{
"version": "17.2.1a",
"status": "affected"
},
{
"version": "17.2.1v",
"status": "affected"
},
{
"version": "17.2.2",
"status": "affected"
},
{
"version": "17.2.3",
"status": "affected"
},
{
"version": "17.3.1",
"status": "affected"
},
{
"version": "17.3.2",
"status": "affected"
},
{
"version": "17.3.3",
"status": "affected"
},
{
"version": "17.3.1a",
"status": "affected"
},
{
"version": "17.3.2a",
"status": "affected"
},
{
"version": "17.3.4",
"status": "affected"
},
{
"version": "17.3.5",
"status": "affected"
},
{
"version": "17.3.4a",
"status": "affected"
},
{
"version": "17.3.6",
"status": "affected"
},
{
"version": "17.3.4b",
"status": "affected"
},
{
"version": "17.3.4c",
"status": "affected"
},
{
"version": "17.3.5a",
"status": "affected"
},
{
"version": "17.3.5b",
"status": "affected"
},
{
"version": "17.3.7",
"status": "affected"
},
{
"version": "17.3.8",
"status": "affected"
},
{
"version": "17.3.8a",
"status": "affected"
},
{
"version": "17.4.1",
"status": "affected"
},
{
"version": "17.4.2",
"status": "affected"
},
{
"version": "17.4.1a",
"status": "affected"
},
{
"version": "17.4.1b",
"status": "affected"
},
{
"version": "17.4.2a",
"status": "affected"
},
{
"version": "17.5.1",
"status": "affected"
},
{
"version": "17.5.1a",
"status": "affected"
},
{
"version": "17.6.1",
"status": "affected"
},
{
"version": "17.6.2",
"status": "affected"
},
{
"version": "17.6.1a",
"status": "affected"
},
{
"version": "17.6.3",
"status": "affected"
},
{
"version": "17.6.3a",
"status": "affected"
},
{
"version": "17.6.4",
"status": "affected"
},
{
"version": "17.6.5",
"status": "affected"
},
{
"version": "17.6.6",
"status": "affected"
},
{
"version": "17.6.6a",
"status": "affected"
},
{
"version": "17.6.5a",
"status": "affected"
},
{
"version": "17.7.1",
"status": "affected"
},
{
"version": "17.7.1a",
"status": "affected"
},
{
"version": "17.7.1b",
"status": "affected"
},
{
"version": "17.7.2",
"status": "affected"
},
{
"version": "17.10.1",
"status": "affected"
},
{
"version": "17.10.1a",
"status": "affected"
},
{
"version": "17.10.1b",
"status": "affected"
},
{
"version": "17.8.1",
"status": "affected"
},
{
"version": "17.8.1a",
"status": "affected"
},
{
"version": "17.9.1",
"status": "affected"
},
{
"version": "17.9.2",
"status": "affected"
},
{
"version": "17.9.1a",
"status": "affected"
},
{
"version": "17.9.3",
"status": "affected"
},
{
"version": "17.9.2a",
"status": "affected"
},
{
"version": "17.9.3a",
"status": "affected"
},
{
"version": "17.9.4",
"status": "affected"
},
{
"version": "17.9.4a",
"status": "affected"
},
{
"version": "17.11.1",
"status": "affected"
},
{
"version": "17.11.1a",
"status": "affected"
},
{
"version": "17.12.1",
"status": "affected"
},
{
"version": "17.12.1a",
"status": "affected"
},
{
"version": "17.12.2",
"status": "affected"
},
{
"version": "17.12.2a",
"status": "affected"
},
{
"version": "17.11.99SW",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2024-20316
2024-03-27 17:15:53
cisco
cisco
vulnrichment
vulnrichment
CVE-2024-20316
2024-03-27 16:49:03
nessus
nessus
cvelist
cvelist
CVE-2024-20316
2024-03-27 16:49:03
5.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
7 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-20316