Cisco UCS Redfish API Command Injection Root Privilege Escalation
CVE-2024-20365 Published on October 2, 2024

Cisco Integrated Management Controller Redfish Command Injection Vulnerability
A vulnerability in the Redfish API of Cisco UCS B-Series, Cisco UCS Managed C-Series, and Cisco UCS X-Series Servers could allow an authenticated, remote attacker with administrative privileges to perform command injection attacks on an affected system and elevate privileges to root. This vulnerability is due to insufficient input validation. An attacker with administrative privileges could exploit this vulnerability by sending crafted commands through the Redfish API on an affected device. A successful exploit could allow the attacker to elevate privileges to root.

NVD

Vulnerability Analysis

CVE-2024-20365 can be exploited with network access, and requires user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality and integrity, and no impact on availability.

Attack Vector:

NETWORK

Attack Complexity:

LOW

Privileges Required:

HIGH

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

NONE

Weakness Type

What is a Command Injection Vulnerability?

The software constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

CVE-2024-20365 has been classified to as a Command Injection vulnerability or weakness.

Products Associated with CVE-2024-20365

Want to know whenever a new CVE is published for Cisco Unified Computing System? stack.watch will email you.

Cisco Unified Computing System

Affected Versions

Cisco Unified Computing System (Managed):

Version 4.1(2a) is affected.
Version 4.1(2b) is affected.
Version 4.1(3a) is affected.
Version 4.1(3b) is affected.
Version 4.1(2c) is affected.
Version 4.1(4a) is affected.
Version 4.1(3c) is affected.
Version 4.1(3d) is affected.
Version 4.2(1c) is affected.
Version 4.2(1d) is affected.
Version 4.1(3e) is affected.
Version 4.2(1f) is affected.
Version 4.1(3f) is affected.
Version 4.2(1i) is affected.
Version 4.2(1k) is affected.
Version 4.1(3h) is affected.
Version 4.2(1l) is affected.
Version 4.2(1m) is affected.
Version 4.1(3i) is affected.
Version 4.2(2a) is affected.
Version 4.2(1n) is affected.
Version 4.1(3j) is affected.
Version 4.2(2c) is affected.
Version 4.2(2d) is affected.
Version 4.2(3b) is affected.
Version 4.1(3k) is affected.
Version 4.2(2e) is affected.
Version 4.2(3d) is affected.
Version 4.2(3e) is affected.
Version 4.2(3g) is affected.
Version 4.1(3l) is affected.
Version 4.3(2b) is affected.
Version 4.2(3h) is affected.
Version 4.2(3i) is affected.
Version 4.3(2c) is affected.
Version 4.1(3m) is affected.
Version 4.3(2e) is affected.
Version 4.3(3a) is affected.
Version 4.2(3j) is affected.
Version 4.3(3c) is affected.
Version 4.3(4a) is affected.
Version 4.2(3k) is affected.
Version 4.3(4b) is affected.

cisco unified_computing_system_manager_firmware:

Version 4.1(2a) is affected.
Version 4.1(2b) is affected.
Version 4.1(3a) is affected.
Version 4.1(3b) is affected.
Version 4.1(2c) is affected.
Version 4.1(4a) is affected.
Version 4.1(3c) is affected.
Version 4.1(3d) is affected.
Version 4.2(1c) is affected.
Version 4.2(1d) is affected.
Version 4.1(3e) is affected.
Version 4.2(1f) is affected.
Version 4.1(3f) is affected.
Version 4.2(1i) is affected.
Version 4.2(1k) is affected.
Version 4.1(3h) is affected.
Version 4.2(1l) is affected.
Version 4.2(1m) is affected.
Version 4.1(3i) is affected.
Version 4.2(2a) is affected.
Version 4.2(1n) is affected.
Version 4.1(3j) is affected.
Version 4.2(2c) is affected.
Version 4.2(2d) is affected.
Version 4.2(3b) is affected.
Version 4.1(3k) is affected.
Version 4.2(2e) is affected.
Version 4.2(3d) is affected.
Version 4.2(3e) is affected.
Version 4.2(3g) is affected.
Version 4.1(3l) is affected.
Version 4.3(2b) is affected.
Version 4.2(3h) is affected.
Version 4.2(3i) is affected.
Version 4.3(2c) is affected.
Version 4.1(3m) is affected.
Version 4.3(2e) is affected.
Version 4.3(3a) is affected.
Version 4.2(3j) is affected.
Version 4.3(3c) is affected.
Version 4.3(4a) is affected.
Version 4.2(3k) is affected.
Version 4.3(4b) is affected.

Exploit Probability

EPSS

0.18%

Percentile

39.89%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Cisco UCS Redfish API Command Injection Root Privilege EscalationCVE-2024-20365 Published on October 2, 2024

Vulnerability Analysis

Weakness Type

What is a Command Injection Vulnerability?

Products Associated with CVE-2024-20365

Affected Versions

Exploit Probability

Cisco UCS Redfish API Command Injection Root Privilege Escalation
CVE-2024-20365 Published on October 2, 2024