Cisco has recently disclosed a critical security vulnerability in the Cisco Smart Software Manager On-Prem, which allows unauthorized users to change the passwords of any user, including administrators, without the need for authentication. This vulnerability, identified as CVE-2024-20419, has been rated with the highest severity score of 10.
The Cisco Smart Software Manager On-Prem is a platform that is used by customers to manage licenses for Cisco devices within their premises. This vulnerability arises from an improper implementation of the password-change process, which could be exploited by sending specially crafted HTTP requests to the affected device.
Once exploited, an attacker could gain access to the web UI or API with the compromised user’s privileges. This could potentially lead to unauthorized access to sensitive information, data theft, or other malicious activities. Unfortunately, there are currently no workarounds available to address this threat.
While the exact extent of the damage that could be caused by an attacker gaining administrative control over the device is unclear, it is essential for users to apply the security update provided by Cisco to patch the vulnerability. This update aims to prevent any potential exploitation of the flaw.
At present, there is no evidence to suggest that this vulnerability is actively being exploited. However, it is crucial for organizations using the Cisco Smart Software Manager On-Prem to apply the necessary patches promptly to protect their systems from any potential security breaches.
It is recommended that users stay informed about security updates and best practices to safeguard their systems from emerging threats. By taking proactive measures to address vulnerabilities promptly, organizations can enhance their security posture and minimize the risk of unauthorized access to their critical assets. Cisco continues to monitor the situation and provide updates as needed to ensure the security of its customers.
