mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-06-19 17:32:41 +00:00
800 lines
42 KiB
JSON
800 lines
42 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2024-20265",
|
|
"ASSIGNER": "psirt@cisco.com",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "A vulnerability in the boot process of Cisco Access Point (AP) Software could allow an unauthenticated, physical attacker to bypass the Cisco Secure Boot functionality and load a software image that has been tampered with on an affected device.\r\n\r This vulnerability exists because unnecessary commands are available during boot time at the physical console. An attacker could exploit this vulnerability by interrupting the boot process and executing specific commands to bypass the Cisco Secure Boot validation checks and load an image that has been tampered with. This image would have been previously downloaded onto the targeted device. A successful exploit could allow the attacker to load the image once. The Cisco Secure Boot functionality is not permanently compromised."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Trust Boundary Violation",
|
|
"cweId": "CWE-501"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "Cisco",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "Cisco IOS XE Software",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "N/A"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "Cisco Aironet Access Point Software",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.100.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.130.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.111.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.110.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.121.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.141.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.151.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.160.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.161.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.164.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.166.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.170.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.2.163.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.102.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.111.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.112.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.121.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.122.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.130.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.131.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.132.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.133.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.140.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.141.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.143.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.150.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.108.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.90.53"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.104.46"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.200.200"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.104.64"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.15.165"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.90.11"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.135.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.104.14"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.90.36"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.15.142"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.104.37"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.15.117"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.15.120"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.15.25"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.15.158"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.15.118"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.90.25"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.15.169"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.3.90.58"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.4.100.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.4.1.199"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.4.1.91"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.4.1.142"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.4.1.175"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.4.1.218"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.4.1.92"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.103.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.105.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.110.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.120.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.131.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.140.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.135.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.151.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.101.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.102.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.161.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.160.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.100.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.171.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.164.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.182.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.5.182.11 ME"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.7.102.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.7.106.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.7.1.16"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.8.100.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.8.111.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.8.120.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.8.125.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.8.130.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.6.101.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.6.1.84"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.6.1.70"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.6.1.71"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.9.100.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.9.111.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.105.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.111.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.130.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.112.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.122.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.113.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.121.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.141.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.142.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.151.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.150.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.171.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.181.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.182.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.161.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.170.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.183.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.162.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.10.185.0"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "Cisco Business Wireless Access Point Software",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.0.1.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.0.2.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.1.1.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.1.2.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.2.1.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.2.2.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.3.1.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.3.1.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.3.2.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.4.1.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.4.2.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.6.1.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.6.2.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.7.1.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.8.1.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.5.2.0"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "Cisco Aironet Access Point Software (IOS XE Controller)",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.10.1e"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.10.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.1.1t"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.1.1s"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.1.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.11.1a"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.11.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.11.1c"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.11.1b"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.1s"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.4"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.2s"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.1t"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.4a"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.5"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.3"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.6"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.8"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.7"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "16.12.6a"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.3.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.3.2a"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.3.3"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.3.4"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.3.5"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.3.2"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.3.4c"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.3.5a"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.3.5b"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.3.6"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.2.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.2.1a"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.2.3"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.2.2"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.5.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.4.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.4.2"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.6.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.6.2"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.6.3"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.6.4"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.6.5"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.6.6a"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.6.5a"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.10.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.9.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.9.2"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.9.3"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.7.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.8.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "17.11.1"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-secureboot-bypass-zT5vJkSD",
|
|
"refsource": "MISC",
|
|
"name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-secureboot-bypass-zT5vJkSD"
|
|
}
|
|
]
|
|
},
|
|
"source": {
|
|
"advisory": "cisco-sa-ap-secureboot-bypass-zT5vJkSD",
|
|
"discovery": "INTERNAL",
|
|
"defects": [
|
|
"CSCwf62026"
|
|
]
|
|
},
|
|
"exploit": [
|
|
{
|
|
"lang": "en",
|
|
"value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
|
|
}
|
|
],
|
|
"impact": {
|
|
"cvss": [
|
|
{
|
|
"version": "3.1",
|
|
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
|
|
"baseScore": 5.9,
|
|
"baseSeverity": "MEDIUM",
|
|
"attackVector": "PHYSICAL",
|
|
"attackComplexity": "LOW",
|
|
"privilegesRequired": "LOW",
|
|
"userInteraction": "NONE",
|
|
"scope": "UNCHANGED",
|
|
"confidentialityImpact": "HIGH",
|
|
"integrityImpact": "HIGH",
|
|
"availabilityImpact": "NONE"
|
|
}
|
|
]
|
|
}
|
|
} |