{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-20439", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2023-11-08T15:08:07.670Z", "datePublished": "2024-09-04T16:28:39.669Z", "dateUpdated": "2025-10-21T22:55:46.010Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2025-04-01T21:36:38.960Z"}, "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco Smart Licensing Utility (CSLU) could allow an unauthenticated, remote attacker to log into an affected system by using a static administrative credential.\r\n\r This vulnerability is due to an undocumented static user credential for an administrative account. An attacker could exploit this vulnerability by using the static credentials to login to the affected system. A successful exploit could allow the attacker to login to the affected system with administrative rights over the CSLU application API."}], "affected": [{"vendor": "Cisco", "product": "Cisco Smart License Utility", "versions": [{"version": "2.1.0", "status": "affected"}, {"version": "2.0.0", "status": "affected"}, {"version": "2.2.0", "status": "affected"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Hidden Functionality", "type": "cwe", "cweId": "CWE-912"}]}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cslu-7gHMzWmw", "name": "cisco-sa-cslu-7gHMzWmw"}], "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}}], "exploits": [{"lang": "en", "value": "In March 2025, the Cisco Product Security Incident Response Team (PSIRT) became aware of attempted exploitation of this vulnerability in the wild. Cisco continues to strongly recommend that customers upgrade to a fixed software release to remediate this vulnerability."}], "source": {"advisory": "cisco-sa-cslu-7gHMzWmw", "discovery": "INTERNAL", "defects": ["CSCwi41731"]}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-20439", "role": "CISA Coordinator", "options": [{"Exploitation": "active"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-03-31T18:12:06.667412Z"}}}, {"other": {"type": "kev", "content": {"dateAdded": "2025-03-31", "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-20439"}}}], "affected": [{"cpes": ["cpe:2.3:a:cisco:cisco_smart_license_utility:*:*:*:*:*:*:*:*"], "vendor": "cisco", "product": "cisco_smart_license_utility", "versions": [{"status": "affected", "version": "2.1.0"}, {"status": "affected", "version": "2.0.0"}, {"status": "affected", "version": "2.2.0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:cisco:cisco_smart_license_utility:*:*:*:*:*:*:*:*"], "vendor": "cisco", "product": "cisco_smart_license_utility", "versions": [{"status": "affected", "version": "2.1.0"}, {"status": "affected", "version": "2.0.0"}, {"status": "affected", "version": "2.2.0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:cisco:cisco_smart_license_utility:*:*:*:*:*:*:*:*"], "vendor": "cisco", "product": "cisco_smart_license_utility", "versions": [{"status": "affected", "version": "2.1.0"}, {"status": "affected", "version": "2.0.0"}, {"status": "affected", "version": "2.2.0"}], "defaultStatus": "unknown"}], "references": [{"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-20439", "tags": ["government-resource"]}], "timeline": [{"time": "2025-03-31T00:00:00+00:00", "lang": "en", "value": "CVE-2024-20439 added to CISA KEV"}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-21T22:55:46.010Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-20439", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2023-11-08T15:08:07.670Z", "datePublished": "2024-09-04T16:28:39.669Z", "dateUpdated": "2025-10-21T22:55:46.010Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2025-04-01T21:36:38.960Z"}, "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco Smart Licensing Utility (CSLU) could allow an unauthenticated, remote attacker to log into an affected system by using a static administrative credential.\r\n\r This vulnerability is due to an undocumented static user credential for an administrative account. An attacker could exploit this vulnerability by using the static credentials to login to the affected system. A successful exploit could allow the attacker to login to the affected system with administrative rights over the CSLU application API."}], "affected": [{"vendor": "Cisco", "product": "Cisco Smart License Utility", "versions": [{"version": "2.1.0", "status": "affected"}, {"version": "2.0.0", "status": "affected"}, {"version": "2.2.0", "status": "affected"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Hidden Functionality", "type": "cwe", "cweId": "CWE-912"}]}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cslu-7gHMzWmw", "name": "cisco-sa-cslu-7gHMzWmw"}], "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}}], "exploits": [{"lang": "en", "value": "In March 2025, the Cisco Product Security Incident Response Team (PSIRT) became aware of attempted exploitation of this vulnerability in the wild. Cisco continues to strongly recommend that customers upgrade to a fixed software release to remediate this vulnerability."}], "source": {"advisory": "cisco-sa-cslu-7gHMzWmw", "discovery": "INTERNAL", "defects": ["CSCwi41731"]}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-20439", "role": "CISA Coordinator", "options": [{"Exploitation": "active"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-03-31T18:12:06.667412Z"}}}, {"other": {"type": "kev", "content": {"dateAdded": "2025-03-31", "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-20439"}}}], "affected": [{"cpes": ["cpe:2.3:a:cisco:cisco_smart_license_utility:*:*:*:*:*:*:*:*"], "vendor": "cisco", "product": "cisco_smart_license_utility", "versions": [{"status": "affected", "version": "2.1.0"}, {"status": "affected", "version": "2.0.0"}, {"status": "affected", "version": "2.2.0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:cisco:cisco_smart_license_utility:*:*:*:*:*:*:*:*"], "vendor": "cisco", "product": "cisco_smart_license_utility", "versions": [{"status": "affected", "version": "2.1.0"}, {"status": "affected", "version": "2.0.0"}, {"status": "affected", "version": "2.2.0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:cisco:cisco_smart_license_utility:*:*:*:*:*:*:*:*"], "vendor": "cisco", "product": "cisco_smart_license_utility", "versions": [{"status": "affected", "version": "2.1.0"}, {"status": "affected", "version": "2.0.0"}, {"status": "affected", "version": "2.2.0"}], "defaultStatus": "unknown"}], "references": [{"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-20439", "tags": ["government-resource"]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-04T17:45:35.659Z"}, "timeline": [{"time": "2025-03-31T00:00:00+00:00", "lang": "en", "value": "CVE-2024-20439 added to CISA KEV"}], "title": "CISA ADP Vulnrichment"}]}}

{"cisaActionDue": "2025-04-21", "cisaExploitAdd": "2025-03-31", "cisaRequiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.", "cisaVulnerabilityName": "Cisco Smart Licensing Utility Static Credential Vulnerability", "configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:smart_license_utility:*:*:*:*:*:*:*:*", "matchCriteriaId": "CDFA4BEC-53FD-4A9C-9C78-4663F1B7528E", "versionEndExcluding": "2.3.0", "versionStartIncluding": "2.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco Smart Licensing Utility (CSLU) could allow an unauthenticated, remote attacker to log into an affected system by using a static administrative credential.\r\n\r This vulnerability is due to an undocumented static user credential for an administrative account. An attacker could exploit this vulnerability by using the static credentials to login to the affected system. A successful exploit could allow the attacker to login to the affected system with administrative rights over the CSLU application API."}, {"lang": "es", "value": "Una vulnerabilidad en Cisco Smart Licensing Utility podr\u00eda permitir que un atacante remoto no autenticado inicie sesi\u00f3n en un sistema afectado mediante una credencial administrativa est\u00e1tica. Esta vulnerabilidad se debe a una credencial de usuario est\u00e1tica no documentada para una cuenta administrativa. Un atacante podr\u00eda aprovechar esta vulnerabilidad mediante el uso de las credenciales est\u00e1ticas para iniciar sesi\u00f3n en el sistema afectado. Una explotaci\u00f3n exitosa podr\u00eda permitir que el atacante inicie sesi\u00f3n en el sistema afectado con privilegios administrativos sobre la API de la aplicaci\u00f3n Cisco Smart Licensing Utility."}], "id": "CVE-2024-20439", "lastModified": "2025-10-21T23:16:20.470", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "psirt@cisco.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-09-04T17:15:13.210", "references": [{"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cslu-7gHMzWmw"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-20439"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-912"}], "source": "psirt@cisco.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-798"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}