CVE-2024-20359 | Cisco ASA/Firepower Threat Defense Legacy Capability code injection (cisco-sa-asaftd-persist-rce-FLsNXF4h)

Inserito da Angelo Barbosa | Apr 24, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Cisco ASA and Firepower Threat Defense. Affected by this issue is some unknown functionality of the component Legacy Capability. The manipulation leads to code injection.

This vulnerability is handled as CVE-2024-20359. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20359 | Cisco ASA/Firepower Threat Defense Legacy Capability code injection (cisco-sa-asaftd-persist-rce-FLsNXF4h)

Post correlati

OpenReplay Account Setting cross site scripting (GHSA-xpfv-454c-3fj4)

CVE-2024-7469 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface list_vpn_web_custom.php sslvpn_config_mod template/stylenum os command injection

CVE-2023-31302 | Sesami Cash Point & Transport Optimizer 6.3.8.6 Teller cross site scripting (usd-2022-0056)

CVE-2023-31728 | Teltonika RUT240 prior 07.04.2 Bridge MOde access control