CVE-2024-20504

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) (CWE-80)

Published: Nov 6, 2024 / Updated: 13d ago

010
CVSS 5.4EPSS 0.04%Medium
CVE info copied to clipboard

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Timeline

CVE Assignment

NVD published the first details for CVE-2024-20504

Nov 6, 2024 at 5:15 PM
CVSS

A CVSS base score of 5.4 has been assigned.

Nov 6, 2024 at 5:20 PM / nvd
First Article

Feedly found the first article mentioning CVE-2024-20504. See article

Nov 6, 2024 at 5:24 PM / National Vulnerability Database
CVSS Estimate

Feedly estimated the CVSS score as MEDIUM

Nov 6, 2024 at 5:24 PM
EPSS

EPSS Score was set to: 0.04% (Percentile: 10%)

Nov 7, 2024 at 10:04 AM
Detection in Vulnerability Scanners

Detection for the vulnerability has been added to Nessus (210599)

Nov 8, 2024 at 10:15 PM
Detection in Vulnerability Scanners

Detection for the vulnerability has been added to Nessus (210598)

Nov 8, 2024 at 10:15 PM
Detection in Vulnerability Scanners

Detection for the vulnerability has been added to Nessus (210597)

Nov 8, 2024 at 10:15 PM
Static CVE Timeline Graph

Affected Systems

Cisco/asyncos
+null more

Attack Patterns

CAPEC-18: XSS Targeting Non-Script Elements
+null more

News

Secure Web Appliance XSS (cisco-sa-esa-wsa-sma-xss-zYm3f49n)
Nessus Plugin ID 210599 with Medium Severity Synopsis The remote device is missing a vendor-supplied security patch. Description According to its self-reported version, Secure Web Appliance is affected by a vulnerability. - A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. (CVE-2024-20504) Please see the included Cisco BID and Cisco Security Advisory for more information. Solution Upgrade to the relevant fixed version referenced in Cisco bug IDs CSCwj72814 Read more at https://www.tenable.com/plugins/nessus/210599
CVE Alert: CVE-2024-20504 - https://www. redpacketsecurity.com/cve_aler t_cve-2024-20504/ # OSINT # ThreatIntel # CyberSecurity # cve_2024_20504
CVE Alert: CVE-2024-20504
An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.
Stored cross-site scripting in Cisco AsyncOS for Secure Email and Web Manager, Secure Email Gateway and Secure Web Appliance
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks. This security bulletin contains one low risk vulnerability.
Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Stored Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user input. […]
See 9 more articles and social media posts

CVSS V3.1

Attack Vector:Network
Attack Complexity:Low
Privileges Required:Low
User Interaction:Required
Scope:Changed
Confidentiality:Low
Integrity:Low
Availability Impact:None

Categories

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI