CVE-2024-20507
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Summary
CVE-2024-20507 is a logging subsystem vulnerability in Cisco Meeting Management. This issue permits authenticated, remote attackers to access sensitive information in plain text on affected systems. The vulnerability arises due to a flaw in the storage of sensitive data within the web-based management interface. An attacker can exploit this flaw by successfully logging into the interface, potentially gaining unauthorized access to confidential data. This vulnerability poses a significant risk and underscores the importance of keeping software up-to-date with security patches.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.