CVE-2024-20319

{"id": "CVE-2024-20319", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "ykramarz@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2024-03-13T17:15:48.003", "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-uhv6ZDeF", "source": "ykramarz@cisco.com"}, {"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-uhv6ZDeF", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-284"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the UDP forwarding code of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to bypass configured management plane protection policies and access the Simple Network Management Plane (SNMP) server of an affected device.\r\n\r This vulnerability is due to incorrect UDP forwarding programming when using SNMP with management plane protection. An attacker could exploit this vulnerability by attempting to perform an SNMP operation using broadcast as the destination address that could be processed by an affected device that is configured with an SNMP server. A successful exploit could allow the attacker to communicate to the device on the configured SNMP ports. Although an unauthenticated attacker could send UDP datagrams to the configured SNMP port, only an authenticated user can retrieve or modify data using SNMP requests."}, {"lang": "es", "value": "Una vulnerabilidad en el c\u00f3digo de reenv\u00edo UDP del software Cisco IOS XR podr\u00eda permitir que un atacante adyacente no autenticado omita las pol\u00edticas de protecci\u00f3n del plano de administraci\u00f3n configuradas y acceda al servidor del Plano simple de administraci\u00f3n de red (SNMP) de un dispositivo afectado. Esta vulnerabilidad se debe a una programaci\u00f3n incorrecta de reenv\u00edo UDP cuando se utiliza SNMP con protecci\u00f3n del plano de administraci\u00f3n. Un atacante podr\u00eda aprovechar esta vulnerabilidad al intentar realizar una operaci\u00f3n SNMP utilizando la transmisi\u00f3n como direcci\u00f3n de destino que podr\u00eda ser procesada por un dispositivo afectado que est\u00e9 configurado con un servidor SNMP. Un exploit exitoso podr\u00eda permitir al atacante comunicarse con el dispositivo en los puertos SNMP configurados. Aunque un atacante no autenticado podr\u00eda enviar datagramas UDP al puerto SNMP configurado, s\u00f3lo un usuario autenticado puede recuperar o modificar datos mediante solicitudes SNMP."}], "lastModified": "2024-11-21T08:52:21.800", "sourceIdentifier": "ykramarz@cisco.com"}