Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2024-20315
HistoryMar 13, 2024 - 5:15 p.m.

Improper access control

2024-03-1317:15:00
PRIOn knowledge base
www.prio-n.com
2
access control
vulnerability
cisco ios xr software
mpls interfaces
acl processing
unauthenticated attacker
bypass
configured acl
exploit
traffic
internal interface contexts
resources

7.3 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

A vulnerability in the access control list (ACL) processing on MPLS interfaces in the ingress direction of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ACL.

This vulnerability is due to improper assignment of lookup keys to internal interface contexts. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to access resources behind the affected device that were supposed to be protected by a configured ACL.

Related

cve 1
cvelist 1
nvd 1
cisco 1
cve
cve
CVE-2024-20315
2024-03-13 17:15:47
cvelist
cvelist
CVE-2024-20315
2024-03-13 16:45:58
nvd
nvd
CVE-2024-20315
2024-03-13 17:15:47
cisco
cisco
Cisco IOS XR Software MPLS and Pseudowire Interfaces Access Control List Bypass Vulnerabilities
2024-03-13 16:00:00

7.3 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for PRION:CVE-2024-20315
cve1cvelist1nvd1cisco1