Skip to main content

Cbs250 8T D Firmware CVE-2024-20263

HIGH
Improper Access Control (CWE-284)
2024-01-26 psirt@cisco.com
Authentication Bypass Cisco Cbs250 8T D Firmware Cbs250 8Pp D Firmware Cbs250 8T E 2G Firmware Cbs250 8Pp E 2G Firmware Cbs250 8P E 2G Firmware Cbs250 8Fp E 2G Firmware Cbs250 16T 2G Firmware Cbs250 16P 2G Firmware Cbs250 24T 4G Firmware Cbs250 24Pp 4G Firmware Cbs250 24P 4G Firmware Cbs250 24Fp 4G Firmware Cbs250 48T 4G Firmware Cbs250 48Pp 4G Firmware Cbs250 48P 4G Firmware Cbs250 24T 4X Firmware Cbs250 24P 4X Firmware Cbs250 24Fp 4X Firmware Cbs250 48T 4X Firmware Cbs250 48P 4X Firmware Cbs350 8T E 2G Firmware Cbs350 8P 2G Firmware Cbs350 8P E 2G Firmware Cbs350 8Fp 2G Firmware Cbs350 8Fp E 2G Firmware Cbs350 8S E 2G Firmware Cbs350 16T 2G Firmware Cbs350 16T E 2G Firmware Cbs350 16P 2G Firmware Cbs350 16P E 2G Firmware Cbs350 16Fp 2G Firmware Cbs350 24T 4G Firmware Cbs350 24P 4G Firmware Cbs350 24Fp 4G Firmware Cbs350 24S 4G Firmware Cbs350 48T 4G Firmware Cbs350 48P 4G Firmware Cbs350 48Fp 4G Firmware Cbs350 24T 4X Firmware Cbs350 24P 4X Firmware Cbs350 24Fp 4X Firmware Cbs350 48T 4X Firmware Cbs350 48P 4X Firmware Cbs350 48Fp 4X Firmware Cbs350 8Mgp 2X Firmware Cbs350 8Mp 2X Firmware Cbs350 24Mgp 4X Firmware Cbs350 12Np 4X Firmware Cbs350 24Ngp 4X Firmware Cbs350 48Ngp 4X Firmware Cbs350 8Xt Firmware Cbs350 12Xs Firmware Cbs350 12Xt Firmware Cbs350 16Xts Firmware Cbs350 24Xs Firmware Cbs350 24Xt Firmware Cbs350 24Xts Firmware Cbs350 48Xt 4X Firmware Sg350Xg 2F10 Firmware Sg350Xg 24F Firmware Sg350Xg 24T Firmware Sg350Xg 48T Firmware Sg350X 24 Firmware Sg350X 24P Firmware Sg350X 24Mp Firmware Sg350X 48 Firmware Sg350X 48P Firmware Sg350X 48Mp Firmware Sg550Xg 8F8T Firmware Sg550Xg 24F Firmware Sg550Xg 24T Firmware Sg550X 48T Firmware Sg550X 24 Firmware Sg550X 24P Firmware Sg550X 24Mp Firmware Sg550X 24Mpp Firmware Sg550X 48 Firmware Sg550X 48P Firmware Sg550X 48Mp Firmware Sf550X 24 Firmware Sf550X 24P Firmware Sf550X 24Mp Firmware Sf550X 48 Firmware Sf550X 48P Firmware Sf550X 48Mp Firmware
7.2
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.2 HIGH
AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
None
Integrity
Low
Availability
Low

Lifecycle Timeline

1
CVE Published
Jan 26, 2024 - 18:15 nvd
HIGH 7.2

DescriptionNVD

A vulnerability with the access control list (ACL) management within a stacked switch configuration of Cisco Business 250 Series Smart Switches and Business 350 Series Managed Switches could allow an unauthenticated, remote attacker to bypass protection offered by a configured ACL on an affected device. This vulnerability is due to incorrect processing of ACLs on a stacked configuration when either the primary or backup switches experience a full stack reload or power cycle. An attacker could exploit this vulnerability by sending crafted traffic through an affected device. A successful exploit could allow the attacker to bypass configured ACLs, causing traffic to be dropped or forwarded in an unexpected manner. The attacker does not have control over the conditions that result in the device being in the vulnerable state. Note: In the vulnerable state, the ACL would be correctly applied on the primary devices but could be incorrectly applied to the backup devices.

AnalysisAI

A vulnerability with the access control list (ACL) management within a stacked switch configuration of Cisco Business 250 Series Smart Switches and Business 350 Series Managed Switches could allow an. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified under CWE-284. A vulnerability with the access control list (ACL) management within a stacked switch configuration of Cisco Business 250 Series Smart Switches and Business 350 Series Managed Switches could allow an unauthenticated, remote attacker to bypass protection offered by a configured ACL on an affected device. This vulnerability is due to incorrect processing of ACLs on a stacked configuration when either the primary or backup switches experience a full stack reload or power cycle. An attacker could exploit this vulnerability by sending crafted traffic through an affected device. A successful exploit could allow the attacker to bypass configured ACLs, causing traffic to be dropped or forwarded in an unexpected manner. The attacker does not have control over the conditions that result in the device being in the vulnerable state. Note: In the vulnerable state, the ACL would be correctly applied on the primary devices but could be incorrectly applied to the backup devices. Affected products include: Cisco Cbs250-8T-D Firmware, Cisco Cbs250-8Pp-D Firmware, Cisco Cbs250-8T-E-2G Firmware, Cisco Cbs250-8Pp-E-2G Firmware, Cisco Cbs250-8P-E-2G Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Share

CVE-2024-20263 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy