The vulnerability impacts the Cisco 5000 Sequence Enterprise Community Compute Programs (ENCS), Catalyst 8300 Sequence Edge uCPE, UCS C-Sequence Rack Servers in standalone mode and UCS E-Sequence Servers in default configurations. Many different merchandise and home equipment which are primarily based on UCS C-Sequence servers are additionally affected if the IMC CLI was explicitly configured to be accessible — IMC shouldn’t be uncovered by default on these units.
The Cisco Product Safety Incident Response Staff (PSIRT) is conscious of public proof-of-concept code being obtainable for this vulnerability however has not seen malicious exploitation within the wild.
The second vulnerability, CVE-2024-20356, is situated within the web-based administration interface of Cisco IMC and may be exploited by attackers which have administrator-level privileges by specifically crafted instructions.
The flaw impacts Cisco 5000 Sequence Enterprise Community Compute Programs (ENCS), Catalyst 8300 Sequence Edge uCPE, UCS C-Sequence M5, M6, and M7 Rack Servers in standalone mode, UCS E-Sequence Servers and UCS S-Sequence Storage Servers in standalone mode. Equally to the earlier vulnerability, home equipment primarily based on UCS C-Sequence servers are additionally impacted if their default configurations had been modified to be able to expose the IMC person interface.
Most server producers have their very own BMC implementations and these controllers and their software program have a historical past of significant vulnerabilities. Refined attackers, together with APT teams, have even created malware implants focusing on these interfaces.
Bypassing SNMP restrictions in IOS and IOS XE
Cisco additionally patched a medium-risk vulnerability, CVE-2024-20373, in its IOS and IOS XE Software program which is used on lots of its enterprise switches and routers. The flaw permits unauthenticated attackers to bypass the Entry Management Record (ACL) function for easy community administration protocol (SNMP) in sure instances. SNMP is a protocol that enables units to show details about their configurations and to make modifications to these settings over the community.
