CVE-2024-20397

A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification.  This vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software.

CVSS v3 5.2 MEDIUM

5.2^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.9 / Impact : 4.2

Attack Vector PHYSICAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL

Configurations

No configuration.

History

05 Feb 2025, 21:15

Type	Values Removed	Values Added
Summary		(es) Una vulnerabilidad en el cargador de arranque del software Cisco NX-OS podría permitir que un atacante no autenticado con acceso físico a un dispositivo afectado, o un atacante local autenticado con credenciales administrativas, eluda la verificación de la firma de la imagen de NX-OS. Esta vulnerabilidad se debe a una configuración insegura del cargador de arranque. Un atacante podría aprovechar esta vulnerabilidad ejecutando una serie de comandos del cargador de arranque. Una explotación exitosa podría permitir al atacante eludir la verificación de la firma de la imagen de NX-OS y cargar software no verificado.
Summary	(en) A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification. This vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software.	(en) A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification.  This vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software.
References	~~() https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL -~~	() https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL -

04 Dec 2024, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-12-04 17:15

Updated : 2025-02-05 21:15

NVD link : CVE-2024-20397

Mitre link : CVE-2024-20397

CVE.ORG link : CVE-2024-20397

JSON object : View

Products Affected

No product.

CWE

CWE-284

Improper Access Control

5.2 /10