### [CVE-2024-20279](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20279) ![](https://img.shields.io/static/v1?label=Product&message=Cisco%20Application%20Policy%20Infrastructure%20Controller%20(APIC)&color=blue) ![](https://img.shields.io/static/v1?label=Version&message=1.1(1d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(1j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(1n)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(1o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(1r)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(1s)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(2h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(2i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(3f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(4e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(4f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(4g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(4i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(4l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.1(4m)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(1h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(1i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(1k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(1m)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(2g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(2h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(2i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(2j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(3c)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(3e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(3h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.2(3m)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.3(1g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.3(1h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.3(1i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.3(1j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.3(2f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.3(2h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.3(2i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.3(2j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=1.3(2k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(1k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(1l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(1m)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(1n)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(1o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(1p)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(1q)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(1r)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(2f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(2g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(2h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(2l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(2m)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(2n)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.0(2o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.1(1h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.1(1i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.1(2e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.1(2f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.1(2g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.1(2k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.1(3g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.1(3h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.1(3j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.1(4a)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(1k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(1n)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(1o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(2e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(2f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(2i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(2j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(2k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(2q)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(3j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(3p)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(3r)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(3s)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(3t)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(4f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(4p)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(4q)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.2(4r)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.3(1e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.3(1f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.3(1i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.3(1l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.3(1o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=2.3(1p)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.0(1i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.0(1k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.0(2h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.0(2k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.0(2m)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.0(2n)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.1(1i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.1(2m)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.1(2o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.1(2p)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.1(2q)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.1(2s)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.1(2t)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.1(2u)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.1(2v)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(10e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(10f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(10g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(1l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(1m)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(2l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(2o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(3i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(3j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(3n)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(3o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(3r)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(3s)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(41d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(4d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(4e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(5d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(5e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(5f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(6i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(7f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(7k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(8d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(9b)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(9f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=3.2(9h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.0(1h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.0(2c)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.0(3c)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.0(3d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(1a)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(1i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(1j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(1k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(1l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(2g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(2m)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(2o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(2s)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(2u)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(2w)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.1(2x)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(1g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(1i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(1j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(1l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(2e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(2f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(2g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(3j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(3l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(3n)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(3q)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(4i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(4k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(4o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(4p)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(5k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(5l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(5n)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(6d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(6g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(6h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(6l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(6o)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(7f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(7l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(7q)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(7r)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(7s)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(7t)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(7u)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(7v)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=4.2(7w)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.0(1k)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.0(1l)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.0(2e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.0(2h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.1(1h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.1(2e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.1(3e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.1(4c)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(1g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(2e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(2f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(2g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(2h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(3e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(3f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(3g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(4d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(4e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(4f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(4h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(5c)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(5d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(5e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(6e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(6g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(6h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(7f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(7g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(8d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(8e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(8f)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(8g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(8h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.2(8i)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.3(1d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.3(2a)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=5.3(2b)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=6.0(1g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=6.0(1j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=6.0(2h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=6.0(2j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=6.0(3d)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=6.0(3e)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=6.0(3g)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=6.0(4c)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=6.0(5h)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Version&message=6.0(5j)%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Vulnerability&message=Improper%20Access%20Control&color=brightgreen) ### Description A vulnerability in the restricted security domain implementation of Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, remote attacker to modify the behavior of default system policies, such as quality of service (QoS) policies, on an affected system. This vulnerability is due to improper access control when restricted security domains are used to implement multi-tenancy. An attacker with a valid user account associated with a restricted security domain could exploit this vulnerability. A successful exploit could allow the attacker to read, modify, or delete child policies created under default system policies, which are implicitly used by all tenants in the fabric, resulting in disruption of network traffic. Exploitation is not possible for policies under tenants that an attacker has no authorization to access. ### POC #### Reference No PoCs from references. #### Github - https://github.com/fkie-cad/nvd-json-data-feeds