2 matches found
CVE-2024-20439
Cisco Smart Licensing Utility (CSLU) is affected by CVE-2024-20439 due to an undocumented static administrative credential. An unauthenticated, remote attacker can log into the CSLU system and obtain administrative rights over the CSLU API. Impact is unauthenticated remote access with elevated pr...
CVE-2024-20440
CVE-2024-20440 affects Cisco Smart Licensing Utility (CSLU). An unauthenticated, remote attacker can access sensitive information due to excessive verbosity in a debug log file. Exploitation involves sending a crafted HTTP request to an affected device, potentially exposing log files containing c...