CVE-2024-20476

Summary

CVE-2024-20476 is a vulnerability affecting the web-based management interface of Cisco ISE. It allows authenticated, remote attackers to bypass authorization mechanisms for specific file management functions. The root cause of this issue is insufficient server-side validation of Administrator permissions. An attacker can exploit this vulnerability by submitting a specially crafted HTTP request to an affected system, potentially enabling unauthorized file uploads to restricted locations. Successful exploitation requires valid Read-Only Administrator credentials.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.