Cisco Crosswork Network Services Orchestrator
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Cisco Crosswork Network Services Orchestrator.
Recent Cisco Crosswork Network Services Orchestrator Security Advisories
| Advisory | Title | Published |
|---|---|---|
| 2024-05-15 | Cisco Crosswork Network Services Orchestrator Vulnerabilities | May 15, 2024 |
| 2024-05-15 | Cisco Crosswork Network Services Orchestrator Open Redirect Vulnerability | May 15, 2024 |
| 2024-05-15 | Cisco Crosswork Network Services Orchestrator Privilege Escalation Vulnerability | May 15, 2024 |
By the Year
In 2026 there have been 0 vulnerabilities in Cisco Crosswork Network Services Orchestrator. Crosswork Network Services Orchestrator did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 2 | 0.00 |
It may take a day or so for new Crosswork Network Services Orchestrator vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Cisco Crosswork Network Services Orchestrator Security Vulnerabilities
ConfD/Cisco Crosswork CLI Auth Bypass: Local LPE via Arbitrary File Access
CVE-2024-20326
- May 16, 2024
A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could allow an authenticated, low-privileged, local attacker to read and write arbitrary files as root on the underlying operating system. This vulnerability is due to improper authorization enforcement when specific CLI commands are used. An attacker could exploit this vulnerability by executing an affected CLI command with crafted arguments. A successful exploit could allow the attacker to read or write arbitrary files on the underlying operating system with the privileges of the root user.
ConfD CLI & Cisco Crosswork NSO CLI: Local Auth Esc to Root via File Ops
CVE-2024-20389
- May 16, 2024
A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could allow an authenticated, low-privileged, local attacker to read and write arbitrary files as root on the underlying operating system. This vulnerability is due to improper authorization enforcement when specific CLI commands are used. An attacker could exploit this vulnerability by executing an affected CLI command with crafted arguments. A successful exploit could allow the attacker to read or write arbitrary files on the underlying operating system with the privileges of the root user.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Cisco Crosswork Network Services Orchestrator or by Cisco? Click the Watch button to subscribe.
