CVSS 3.1 : 10 | Critical
Cisco has just released a patch to mitigate an emerging vulnerability in Cisco’s Smart Software Manager (SSM) On-Prem systems that allows an unauthenticated remote attacker to change administrative accounts’ passwords and if successful, access the web UI or API with the privileges of the compromised user.
Currently there is no known activity of this exploit being utilized in the wild.
“This vulnerability is due to improper implementation of the password-change process. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow an attacker to access the web UI or API with the privileges of the compromised user.” – Cisco stated.
Sources:
Critical Cisco bug allows crims to change admin passwords • The Register
Cisco Smart Software Manager On-Prem Password Change Vulnerability
Cisco SSM On-Prem bug lets hackers change any user’s password (bleepingcomputer.com)
https://nvd.nist.gov/vuln/detail/CVE-2024-20419
