CVE-2024-20329
CRITICALDescription
A vulnerability in the SSH subsystem of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker to execute operating system commands as root. This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by submitting crafted input when executing remote CLI commands over SSH. A successful exploit could allow the attacker to execute commands on the underlying operating system with root-level privileges. An attacker with limited user privileges could use this vulnerability to gain complete control over the system.
Is your site exposed to CVE-2024-20329?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
| cisco | adaptive_security_appliance_software |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2024-20329? +
How severe is CVE-2024-20329? +
What products are affected by CVE-2024-20329? +
How do I check if I'm vulnerable to CVE-2024-20329? +
Related Vulnerabilities
** UNSUPPORTED WHEN ASSIGNED ** Improper Neutralization of Expression/Command Delimiters vulnerability in Apache Commons OGNL. This issue affects Apache Commons …
A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN …
A vulnerability in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could …
A vulnerability in the Out-of-Band Access Point (AP) Image Download, the Clean Air Spectral Recording, and the client debug bundles …
A vulnerability in an internal API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to upload …
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) …