CVE-2024-20391: Privilege Escalation in Cisco Secure Client via NAM Module
CVE-2024-20391 Published on May 15, 2024
A vulnerability in the Network Access Manager (NAM) module of Cisco Secure Client could allow an unauthenticated attacker with physical access to an affected device to elevate privileges to SYSTEM. This vulnerability is due to a lack of authentication on a specific function. A successful exploit could allow the attacker to execute arbitrary code with SYSTEM privileges on an affected device.
Vulnerability Analysis
CVE-2024-20391 can be exploited with physical access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.
Weakness Type
Missing Authentication for Critical Function
The software does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.
Products Associated with CVE-2024-20391
Want to know whenever a new CVE is published for Cisco Secure Client? stack.watch will email you.
Affected Versions
Cisco Secure Client:- Version 4.9.00086 is affected.
- Version 4.9.01095 is affected.
- Version 4.9.02028 is affected.
- Version 4.9.03047 is affected.
- Version 4.9.03049 is affected.
- Version 4.9.04043 is affected.
- Version 4.9.04053 is affected.
- Version 4.9.05042 is affected.
- Version 4.9.06037 is affected.
- Version 4.10.00093 is affected.
- Version 4.10.01075 is affected.
- Version 4.10.02086 is affected.
- Version 4.10.03104 is affected.
- Version 4.10.04065 is affected.
- Version 4.10.04071 is affected.
- Version 4.10.05085 is affected.
- Version 4.10.05095 is affected.
- Version 4.10.05111 is affected.
- Version 4.10.06079 is affected.
- Version 4.10.06090 is affected.
- Version 4.10.07061 is affected.
- Version 4.10.07062 is affected.
- Version 4.10.07073 is affected.
- Version 4.10.08025 is affected.
- Version 4.10.08029 is affected.
- Version 5.0.00238 is affected.
- Version 5.0.00529 is affected.
- Version 5.0.00556 is affected.
- Version 5.0.01242 is affected.
- Version 5.0.02075 is affected.
- Version 5.0.03072 is affected.
- Version 5.0.03076 is affected.
- Version 5.0.04032 is affected.
- Version 5.0.05040 is affected.
- Version 5.1.0.136 is affected.
- Version 5.1.1.42 is affected.
- Version 5.1.2.42 is affected.
- Version 4.9.01095 is affected.
- Version 4.9.02028 is affected.
- Version 4.9.03047 is affected.
- Version 4.9.03049 is affected.
- Version 4.9.04043 is affected.
- Version 4.9.04053 is affected.
- Version 4.9.05042 is affected.
- Version 4.9.06037 is affected.
- Version 4.10.00093 is affected.
- Version 4.10.01075 is affected.
- Version 4.10.02086 is affected.
- Version 4.10.03104 is affected.
- Version 4.10.04065 is affected.
- Version 4.10.04071 is affected.
- Version 4.10.05085 is affected.
- Version 4.10.05095 is affected.
- Version 4.10.05111 is affected.
- Version 4.10.06079 is affected.
- Version 4.10.06090 is affected.
- Version 4.10.07061 is affected.
- Version 4.10.07062 is affected.
- Version 4.10.07073 is affected.
- Version 4.10.08025 is affected.
- Version 4.10.08029 is affected.
- Version 5.0.00238 is affected.
- Version 5.0.00529 is affected.
- Version 5.0.00556 is affected.
- Version 5.0.01242 is affected.
- Version 5.0.02075 is affected.
- Version 5.0.03072 is affected.
- Version 5.0.03076 is affected.
- Version 5.0.04032 is affected.
- Version 5.0.05040 is affected.
- Version 4.9.00086 is affected.
- Version 5.1.0.136 is affected.
- Version 5.1.1.42 is affected.
- Version 5.1.2.42 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.