CVE-2024-20499

CVSS 3.1 Score 8.6 of 10 (high)

Details

Published Oct 2, 2024
Updated: Oct 8, 2024
CWE ID 787

Summary

CVE-2024-20499 identifies multiple vulnerabilities in the Cisco AnyConnect VPN server found on Cisco Meraki MX and Z Series Teleworker Gateway devices, which may allow unauthenticated remote attackers to induce a denial of service (DoS) condition. The vulnerabilities stem from inadequate validation of client-supplied parameters during SSL VPN session establishment, enabling attackers to exploit them by sending crafted HTTPS requests. Successful exploitation can lead to the Cisco AnyConnect VPN server restarting, disrupting established SSL VPN connections and necessitating reauthentication by remote users. A prolonged attack may prevent new SSL VPN connections from being established, significantly impacting organizational operations. To remediate these vulnerabilities, it is recommended that affected organizations follow guidance provided in Cisco's security advisory linked here.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share