CVE-2024-20499
CVSS 3.1 Score 8.6 of 10 (high)
Details
Summary
CVE-2024-20499 identifies multiple vulnerabilities in the Cisco AnyConnect VPN server found on Cisco Meraki MX and Z Series Teleworker Gateway devices, which may allow unauthenticated remote attackers to induce a denial of service (DoS) condition. The vulnerabilities stem from inadequate validation of client-supplied parameters during SSL VPN session establishment, enabling attackers to exploit them by sending crafted HTTPS requests. Successful exploitation can lead to the Cisco AnyConnect VPN server restarting, disrupting established SSL VPN connections and necessitating reauthentication by remote users. A prolonged attack may prevent new SSL VPN connections from being established, significantly impacting organizational operations. To remediate these vulnerabilities, it is recommended that affected organizations follow guidance provided in Cisco's security advisory linked here.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.