CVE-2024-20482

🗓️ 23 Oct 2024 17:52:08Reported by ciscoType

A vulnerability in Cisco Secure Firewall Management Center (FMC) Software allows an authenticated attacker to elevate privileges by exploiting insufficient role permissions in the web-based management interface

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2024-20482	23 Oct 202420:44	–	circl
Cisco	Cisco Secure Firewall Management Center Privilege Escalation Vulnerability	23 Oct 202416:00	–	cisco
CNNVD	Cisco Secure Firewall Management Center 安全漏洞	23 Oct 202400:00	–	cnnvd
CNVD	Cisco Secure Firewall Management Center Elevation of Privilege Vulnerability	28 Oct 202400:00	–	cnvd
Cvelist	CVE-2024-20482	23 Oct 202417:52	–	cvelist
EUVD	EUVD-2024-18197	3 Oct 202520:07	–	euvd
NVD	CVE-2024-20482	23 Oct 202418:15	–	nvd
OSV	CVE-2024-20482	23 Oct 202418:15	–	osv
Positive Technologies	PT-2024-7464 · Cisco · Cisco Secure Firewall Management Center	23 Oct 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-20482	23 May 202507:48	–	redhatcve

NVD

Node

cisco secure_firewall_management_centerMatch7.2.0

cisco secure_firewall_management_centerMatch7.2.0.1

cisco secure_firewall_management_centerMatch7.2.1

cisco secure_firewall_management_centerMatch7.2.2

cisco secure_firewall_management_centerMatch7.2.3

cisco secure_firewall_management_centerMatch7.2.3.1

cisco secure_firewall_management_centerMatch7.2.4

cisco secure_firewall_management_centerMatch7.2.4.1

cisco secure_firewall_management_centerMatch7.2.5

cisco secure_firewall_management_centerMatch7.2.5.1

cisco secure_firewall_management_centerMatch7.2.5.2

cisco secure_firewall_management_centerMatch7.2.6

cisco secure_firewall_management_centerMatch7.2.7

cisco secure_firewall_management_centerMatch7.2.8

cisco secure_firewall_management_centerMatch7.2.8.1

cisco secure_firewall_management_centerMatch7.3.0

cisco secure_firewall_management_centerMatch7.3.1

cisco secure_firewall_management_centerMatch7.3.1.1

cisco secure_firewall_management_centerMatch7.3.1.2

[
  {
    "vendor": "Cisco",
    "product": "Cisco Firepower Management Center",
    "versions": [
      {
        "version": "7.2.0",
        "status": "affected"
      },
      {
        "version": "7.2.1",
        "status": "affected"
      },
      {
        "version": "7.2.2",
        "status": "affected"
      },
      {
        "version": "7.2.0.1",
        "status": "affected"
      },
      {
        "version": "7.2.3",
        "status": "affected"
      },
      {
        "version": "7.2.3.1",
        "status": "affected"
      },
      {
        "version": "7.2.4",
        "status": "affected"
      },
      {
        "version": "7.2.4.1",
        "status": "affected"
      },
      {
        "version": "7.2.5",
        "status": "affected"
      },
      {
        "version": "7.2.5.1",
        "status": "affected"
      },
      {
        "version": "7.2.6",
        "status": "affected"
      },
      {
        "version": "7.2.7",
        "status": "affected"
      },
      {
        "version": "7.2.5.2",
        "status": "affected"
      },
      {
        "version": "7.2.8",
        "status": "affected"
      },
      {
        "version": "7.2.8.1",
        "status": "affected"
      },
      {
        "version": "7.3.0",
        "status": "affected"
      },
      {
        "version": "7.3.1",
        "status": "affected"
      },
      {
        "version": "7.3.1.1",
        "status": "affected"
      },
      {
        "version": "7.3.1.2",
        "status": "affected"
      }
    ]
  }
]

Source	Link
sec	www.sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-priv-esc-CMQ4S6m7

01 Nov 2024 19:49Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.16.5

EPSS0.00276

SSVC

CWE-863