What is the CVSS score of CVE-2024-20359?

CVE-2024-20359 has a CVSS 3.1 base score of 6.0 (Medium). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N. EPSS exploitation probability: 0.2%.

Which versions of Cisco Adaptive Security Appliance are affected by CVE-2024-20359?

CVE-2024-20359 presents moderate security risk, a code injection vulnerability rated CVSS 6.0. Exploitation could allow attackers to execute code or inject malicious input.

Is there a public PoC exploit available for CVE-2024-20359?

Yes, a public proof-of-concept exploit is available for CVE-2024-20359. Prioritise patching immediately. EPSS: 0.2%.

How to fix or mitigate CVE-2024-20359?

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Validate input sanitization for user-controlled parameters.

Cisco Adaptive Security Appliance CVE-2024-20359

MEDIUM

Code Injection (CWE-94)

2024-04-24 psirt@cisco.com

6.0

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

6.0 MEDIUM

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Lifecycle Timeline

Analysis Generated

Mar 26, 2026 - 11:20 vuln.today

Added to CISA KEV

Oct 28, 2025 - 14:00 cisa

CISA KEV

PoC Detected

Oct 28, 2025 - 14:00 vuln.today

Public exploit code

CVE Published

Apr 24, 2024 - 19:15 nvd

MEDIUM 6.0

DescriptionCVE.org

A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary code with root-level privileges. Administrator-level privileges are required to exploit this vulnerability. This vulnerability is due to improper validation of a file when it is read from system flash memory. An attacker could exploit this vulnerability by copying a crafted file to the disk0: file system of an affected device. A successful exploit could allow the attacker to execute arbitrary code on the affected device after the next reload of the device, which could alter system behavior. Because the injected code could persist across device reboots, Cisco has raised the Security Impact Rating (SIR) of this advisory from Medium to High.

AnalysisAI

Technical ContextAI

Remote code execution allows an attacker to run arbitrary commands or code on the target system over a network without prior authentication. This vulnerability is classified as Code Injection (CWE-94).

RemediationAI

Apply vendor patches immediately. Restrict network access to vulnerable services. Implement network segmentation and monitoring for anomalous activity.

CVE-2024-20359 vulnerability details – vuln.today

Back

Cisco Adaptive Security Appliance CVE-2024-20359

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code