How serious is CVE-2024-20340?

This vulnerability has a CVSS score of 6.5 out of 10, classified as MEDIUM severity. Proof-of-concept exploit code is publicly available, making this an active threat.

Is there exploit code available for CVE-2024-20340?

Yes, proof-of-concept exploit code for CVE-2024-20340 is publicly available on GitHub and security research platforms. This increases the risk of active exploitation.

Which products are affected by CVE-2024-20340?

CVE-2024-20340 affects cisco secure firewall management center. Check the full CVE details for specific version information.

How do I fix CVE-2024-20340?

To remediate CVE-2024-20340, check for security patches from cisco. Apply all available updates and security patches. If no patch is available, implement recommended workarounds or security controls to mitigate the risk.

CVE-2024-20340

Medium

|6.5

Exploit Available

Plain English Summary

AI-powered analysis for quick understanding

An attacker with a valid account on the Cisco Secure Firewall Management Center can exploit a vulnerability in its web interface to perform an SQL injection, allowing them to read sensitive database information and gain limited access to the underlying operating system. This requires the attacker to have specific roles like Security Approver or Network Admin, making it a targeted threat.

Technical Description

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software, formerly Firepower Management Center Software, could allow an authenticated, remote attacker to perform an SQL injection attack against an affected device. To exploit this vulnerability, an attacker must have a valid account on the device with the role of Security Approver, Intrusion Admin, Access Admin, or Network Admin. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web-based management interface of an affected device. A successful exploit could allow the attacker to read the contents of databases on the affected device and also obtain limited read access to the underlying operating system.

CVSS Vector Analysis

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredLow

User InteractionNone

Confidentiality ImpactHigh

Integrity ImpactNone

Availability ImpactNone

ScopeUnchanged

Vector String

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploit Resources

Search for proof-of-concept code and exploit modules

GitHub Search Exploit-DB Nuclei Templates Metasploit Vulners

Official References

NIST NVD

Est. Bounty

$931($500-$1K)

Vendor Response

Grade FPatched in 497 days

Quick Information

Published

Oct 23, 2024

over 1 year ago

Last Modified

Mar 4, 2026

about 1 month ago

Vendor

cisco

Product

secure firewall management center

Related Vulnerabilities

CVE-2024-20358Medium

An attacker with administrator-level access could exploit a flaw in Cisco's security software to run any command on the device's operating system with full control. This is possible because the system doesn't properly check the contents of backup files when they are restored, allowing a maliciously crafted backup to be used for the attack.

CVE-2022-20775High

An attacker with local access to the Cisco SD-WAN Software can run specially crafted commands to gain root-level control of the system, allowing them to execute any command they want. This vulnerability requires the attacker to be authenticated and have access to the command line interface.