5.8

CVE-2024-20322

A vulnerability in the access control list (ACL) processing on Pseudowire interfaces in the ingress direction of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ACL.

 This vulnerability is due to improper assignment of lookup keys to internal interface contexts. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to access resources behind the affected device that were supposed to be protected by a configured ACL.

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users.
Data is provided by the National Vulnerability Database (NVD)
CiscoIos Xr Version7.10.2
   Cisco8011-4g24y4h-i Version-
   Cisco8101-32fh Version-
   Cisco8101-32fh-o Version-
   Cisco8101-32h-o Version-
   Cisco8102-28fh-dpu-o Version-
   Cisco8102-64h Version-
   Cisco8102-64h-o Version-
   Cisco8111-32eh-o Version-
   Cisco8122-64eh-o Version-
   Cisco8122-64ehf-o Version-
   Cisco8201 Version-
   Cisco8201-24h8fh Version-
   Cisco8201-32fh Version-
   Cisco8201-32fh-o Version-
   Cisco8202 Version-
   Cisco8202-32fh-m Version-
   Cisco8212-48fh-m Version-
   Cisco8404 Version-
   Cisco8501-sys-mt Version-
   Cisco8608 Version-
   Cisco8700 Version-
   Cisco8711-32fh-m Version-
   Cisco8712-mod-m Version-
   Cisco8804 Version-
   Cisco8808 Version-
   Cisco8812 Version-
   Cisco8818 Version-
   CiscoNcs 540-12z20g-sys-a Version-
   CiscoNcs 540-12z20g-sys-d Version-
   CiscoNcs 540-24q2c2dd-sys Version-
   CiscoNcs 540-24q8l2dd-sys Version-
   CiscoNcs 540-24z8q2c-sys Version-
   CiscoNcs 540-28z4c-sys-a Version-
   CiscoNcs 540-28z4c-sys-d Version-
   CiscoNcs 540-6z14s-sys-d Version-
   CiscoNcs 540-6z18g-sys-a Version-
   CiscoNcs 540-6z18g-sys-d Version-
   CiscoNcs 540-acc-sys Version-
   CiscoNcs 540-fh-agg Version-
   CiscoNcs 540-fh-csr-sys Version-
   CiscoNcs 540x-12z16g-sys-a Version-
   CiscoNcs 540x-12z16g-sys-d Version-
   CiscoNcs 540x-16z4g8q2c-a Version-
   CiscoNcs 540x-16z4g8q2c-d Version-
   CiscoNcs 540x-16z8q2c-d Version-
   CiscoNcs 540x-4z14g2q-a Version-
   CiscoNcs 540x-4z14g2q-d Version-
   CiscoNcs 540x-6z18g-sys-a Version-
   CiscoNcs 540x-6z18g-sys-d Version-
   CiscoNcs 540x-8z16g-sys-a Version-
   CiscoNcs 540x-8z16g-sys-d Version-
   CiscoNcs 540x-acc-sys Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5501-se Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5502-se Version-
   CiscoNcs 5504 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
   CiscoNcs 55a1-24h Version-
   CiscoNcs 55a1-24q6h-s Version-
   CiscoNcs 55a1-24q6h-ss Version-
   CiscoNcs 55a1-36h Version-
   CiscoNcs 55a1-36h-se Version-
   CiscoNcs 55a1-48q6h Version-
   CiscoNcs 55a2-mod-hd-s Version-
   CiscoNcs 55a2-mod-s Version-
   CiscoNcs 55a2-mod-se-s Version-
   CiscoNcs 560-4 Version-
   CiscoNcs 560-7 Version-
   CiscoNcs 57b1-5dse-sys Version-
   CiscoNcs 57b1-6d24-sys Version-
   CiscoNcs 57c1-48q6-sys Version-
   CiscoNcs 57c3-mod-sys Version-
   CiscoNcs 57d2-18dd-sys Version-
CiscoIos Xr Version7.11
   Cisco8011-4g24y4h-i Version-
   Cisco8101-32fh Version-
   Cisco8101-32fh-o Version-
   Cisco8101-32h-o Version-
   Cisco8102-28fh-dpu-o Version-
   Cisco8102-64h Version-
   Cisco8102-64h-o Version-
   Cisco8111-32eh-o Version-
   Cisco8122-64eh-o Version-
   Cisco8122-64ehf-o Version-
   Cisco8201 Version-
   Cisco8201-24h8fh Version-
   Cisco8201-32fh Version-
   Cisco8201-32fh-o Version-
   Cisco8202 Version-
   Cisco8202-32fh-m Version-
   Cisco8212-48fh-m Version-
   Cisco8404 Version-
   Cisco8501-sys-mt Version-
   Cisco8608 Version-
   Cisco8700 Version-
   Cisco8711-32fh-m Version-
   Cisco8712-mod-m Version-
   Cisco8804 Version-
   Cisco8808 Version-
   Cisco8812 Version-
   Cisco8818 Version-
   CiscoNcs 540-12z20g-sys-a Version-
   CiscoNcs 540-12z20g-sys-d Version-
   CiscoNcs 540-24q2c2dd-sys Version-
   CiscoNcs 540-24q8l2dd-sys Version-
   CiscoNcs 540-24z8q2c-sys Version-
   CiscoNcs 540-28z4c-sys-a Version-
   CiscoNcs 540-28z4c-sys-d Version-
   CiscoNcs 540-6z14s-sys-d Version-
   CiscoNcs 540-6z18g-sys-a Version-
   CiscoNcs 540-6z18g-sys-d Version-
   CiscoNcs 540-acc-sys Version-
   CiscoNcs 540-fh-agg Version-
   CiscoNcs 540-fh-csr-sys Version-
   CiscoNcs 540x-12z16g-sys-a Version-
   CiscoNcs 540x-12z16g-sys-d Version-
   CiscoNcs 540x-16z4g8q2c-a Version-
   CiscoNcs 540x-16z4g8q2c-d Version-
   CiscoNcs 540x-16z8q2c-d Version-
   CiscoNcs 540x-4z14g2q-a Version-
   CiscoNcs 540x-4z14g2q-d Version-
   CiscoNcs 540x-6z18g-sys-a Version-
   CiscoNcs 540x-6z18g-sys-d Version-
   CiscoNcs 540x-8z16g-sys-a Version-
   CiscoNcs 540x-8z16g-sys-d Version-
   CiscoNcs 540x-acc-sys Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5501-se Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5502-se Version-
   CiscoNcs 5504 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
   CiscoNcs 55a1-24h Version-
   CiscoNcs 55a1-24q6h-s Version-
   CiscoNcs 55a1-24q6h-ss Version-
   CiscoNcs 55a1-36h Version-
   CiscoNcs 55a1-36h-se Version-
   CiscoNcs 55a1-48q6h Version-
   CiscoNcs 55a2-mod-hd-s Version-
   CiscoNcs 55a2-mod-s Version-
   CiscoNcs 55a2-mod-se-s Version-
   CiscoNcs 560-4 Version-
   CiscoNcs 560-7 Version-
   CiscoNcs 57b1-5dse-sys Version-
   CiscoNcs 57b1-6d24-sys Version-
   CiscoNcs 57c1-48q6-sys Version-
   CiscoNcs 57c3-mod-sys Version-
   CiscoNcs 57d2-18dd-sys Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.13% 0.33
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
psirt@cisco.com 5.8 3.9 1.4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.