CVE-2024-20279

Summary

CVE-2024-20279 is a medium-severity vulnerability affecting the Cisco Application Policy Infrastructure Controller (APIC), which allows an authenticated remote attacker to modify default system policies, including quality of service (QoS) policies. This issue arises from improper access controls in the restricted security domain implementation, enabling exploitation by users belonging to a restricted security domain. If successfully exploited, the attacker could read, modify, or delete child policies linked to default system policies utilized by all tenants, potentially disrupting network traffic. Organizations can remediate this vulnerability by applying patches provided by Cisco as detailed in their security advisory. The attack vector for this vulnerability is network-based, requiring low privileges and no user interaction for exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.