CVE-2024-20501
CVSS 3.1 Score 8.6 of 10 (high)
Details
Summary
CVE-2024-20501 identifies multiple vulnerabilities in the Cisco AnyConnect VPN server associated with Cisco Meraki MX and Z Series Teleworker Gateway devices, which may allow unauthenticated remote attackers to initiate a denial-of-service (DoS) condition. These vulnerabilities stem from inadequate validation of client-supplied parameters during the establishment of an SSL VPN session, enabling attackers to exploit this by sending crafted HTTPS requests. Successful exploitation could result in the restart of the Cisco AnyConnect VPN server, disrupting established SSL VPN connections and requiring remote users to reauthenticate. While the server recovers automatically when attack traffic ceases, sustained attacks could block new SSL VPN connections entirely. Organizations are advised to implement appropriate security measures or updates from Cisco to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.