Skip to main content

Ios Xr CVE-2024-20456

MEDIUM
Incorrect Permission Assignment for Critical Resource (CWE-732)
2024-07-10 psirt@cisco.com
6.7
CVSS 3.1 · Vendor: cisco
Share

Severity by source

Vendor (cisco) PRIMARY
6.7 MEDIUM
AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Primary rating from Vendor (cisco) · only source for this CVE.

CVSS VectorVendor: cisco

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Jul 10, 2024 - 16:15 cve.org
MEDIUM 6.7

DescriptionCVE.org

A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker with high privileges to bypass the Cisco Secure Boot functionality and load unverified software on an affected device. To exploit this successfully, the attacker must have root-system privileges on the affected device. This vulnerability is due to an error in the software build process. An attacker could exploit this vulnerability by manipulating the system’s configuration options to bypass some of the integrity checks that are performed during the booting process. A successful exploit could allow the attacker to control the boot configuration, which could enable them to bypass of the requirement to run Cisco signed images or alter the security properties of the running system.

AnalysisAI

A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker with high privileges to bypass the Cisco Secure Boot functionality and load unverified. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified as Incorrect Permission Assignment (CWE-732), which allows attackers to access resources due to misconfigured permissions. A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker with high privileges to bypass the Cisco Secure Boot functionality and load unverified software on an affected device. To exploit this successfully, the attacker must have root-system privileges on the affected device. This vulnerability is due to an error in the software build process. An attacker could exploit this vulnerability by manipulating the system’s configuration options to bypass some of the integrity checks that are performed during the booting process. A successful exploit could allow the attacker to control the boot configuration, which could enable them to bypass of the requirement to run Cisco signed images or alter the security properties of the running system. Affected products include: Cisco Ios Xr.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Review and restrict file/resource permissions, apply principle of least privilege.

More in Ios Xr

View all
CVE-2020-3284 CRITICAL
9.8 Nov 06

A vulnerability in the enhanced Preboot eXecution Environment (PXE) boot loader for Cisco IOS XR 64-bit Software could a

CVE-2019-1710 CRITICAL
9.8 Apr 17

A vulnerability in the sysadmin virtual machine (VM) on Cisco ASR 9000 Series Aggregation Services Routers running Cisco

CVE-2023-20190 MEDIUM POC
5.3 Sep 13

A vulnerability in the classic access control list (ACL) compression feature of Cisco IOS XR Software could allow an una

CVE-2025-20138 HIGH
8.8 Mar 12

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary co

CVE-2026-20040 HIGH
8.8 Mar 11

Insufficient CLI argument validation in Cisco IOS XR Software enables authenticated local attackers to achieve root-leve

CVE-2026-20046 HIGH
8.8 Mar 11

Cisco IOS XR Software contains a task group mapping flaw in a specific CLI command that allows authenticated local attac

CVE-2024-20381 HIGH
8.8 Sep 11

A vulnerability in the JSON-RPC API feature in Cisco Crosswork Network Services Orchestrator (NSO) and ConfD that is use

CVE-2020-3217 HIGH
8.8 Jun 03

A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE

CVE-2020-3118 HIGH
8.8 Feb 05

A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could allow an unauthenticated,

CVE-2018-0167 HIGH
8.8 Mar 28

Multiple Buffer Overflow vulnerabilities in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Ci

CVE-2025-20115 HIGH
8.6 Mar 12

A vulnerability in confederation implementation for the Border Gateway Protocol (BGP) in Cisco IOS XR Software coul

CVE-2025-20154 HIGH
8.6 May 07

A vulnerability in the Two-Way Active Measurement Protocol (TWAMP) server feature of Cisco IOS Software and Cisco IOS XE

Share

CVE-2024-20456 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy