CVE-2024-20474

MEDIUM4.3

A vulnerability in Internet Key Exchange version 2 (IKEv2) processing of Cisco Secure Client Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) of Cisco Secure Client

Published Oct 23, 2024

Modified 1 years ago

Fix available

Details

This vulnerability is due to an integer underflow condition. An attacker could exploit this vulnerability by sending a crafted IKEv2 packet to an affected system. A successful exploit could allow the attacker to cause Cisco Secure Client Software to crash, resulting in a DoS condition on the client software.

Note: Cisco Secure Client Software releases 4.10 and earlier were known as Cisco AnyConnect Secure Mobility Client.

Affected Packages

cisco-secure-client-vpn

AlmaLinux 10AlmaLinux 8AlmaLinux 9CentOS 10CentOS 7

Fixed in:

5.1.4.74

Cisco Secure Client - AnyConnect VPN

AppXWindows 10 (1507)Windows 10 (1607) / Server 2016Windows 10 (1809) / Server 2019Windows 10 (1903)

Fixed in:

5.1.4.74

Cisco AnyConnect Secure Mobility Client

Windows 10 (1507)Windows 10 (1607) / Server 2016Windows 10 (1809) / Server 2019Windows 10 (1903)Windows 10 (1909)

Fixed in:

5.1.4.74

Cisco Secure Client

macOS 14macOS 15macOS 26

Fixed in:

5.1.4.74

References

WEB

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-csc-dos-XvPhM3bj

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2024-20474

CVSS Analysis

CVSS v3.1

4.3

Exploitability

Attack Vector

NetworkAV:N

Attack Complexity

LowAC:L

Privileges Required

NonePR:N

User Interaction

RequiredUI:R

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

LowA:L

4.3/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Weakness Type (CWE)

Other

CWE-191

Ecosystems(218)

AlmaLinux 10 AlmaLinux 8 AlmaLinux 9 AppX CentOS 10

Timeline

PublishedOct 23, 2024

ModifiedOct 23, 2024

CVE-2024-20474 | Mondoo Vulnerability Intelligence