CVE-2024-20350

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-20350
A vulnerability in the SSH server of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an unauthenticated, remote attacker to impersonate a Cisco Catalyst Center appliance. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a machine-in-the-middle attack on SSH connections, which could allow the attacker to intercept traffic between SSH clients and a Cisco Catalyst Center appliance. A successful exploit could allow the attacker to impersonate the affected appliance, inject commands into the terminal session, and steal valid user credentials.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.6 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-ssh-e4uOdASj
Configurations

No configuration.

History

26 Sep 2024, 13:32

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad en el servidor SSH de Cisco Catalyst Center, anteriormente Cisco DNA Center, podría permitir que un atacante remoto no autenticado se haga pasar por un dispositivo Cisco Catalyst Center. Esta vulnerabilidad se debe a la presencia de una clave de host SSH estática. Un atacante podría aprovechar esta vulnerabilidad realizando un ataque de tipo máquina intermedia en las conexiones SSH, lo que podría permitir al atacante interceptar el tráfico entre los clientes SSH y un dispositivo Cisco Catalyst Center. Una explotación exitosa podría permitir al atacante hacerse pasar por el dispositivo afectado, inyectar comandos en la sesión de terminal y robar credenciales de usuario válidas.

25 Sep 2024, 17:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-09-25 17:15

Updated : 2024-09-26 13:32

NVD link : CVE-2024-20350

Mitre link : CVE-2024-20350

CVE.ORG link : CVE-2024-20350

JSON object : View

Products Affected

No product.

CWE
CWE-321

Use of Hard-coded Cryptographic Key


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024