CVE-2024-20456

Summary

CVE-2024-20456 is a vulnerability affecting the boot process of Cisco IOS XR Software. An authenticated, local attacker with high privileges can exploit this issue to bypass the Cisco Secure Boot functionality and load unverified software on an affected device. This requires the attacker to have root-system privileges on the device. The vulnerability stems from an error in the software build process, enabling attackers to manipulate configuration options and bypass some integrity checks during the boot process. Successful exploitation allows the attacker to control the boot configuration, potentially bypassing the requirement to run Cisco signed images or altering the security properties of the running system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.