Systems Engineering is aware of the group of Cisco Expressway Series Cross-Site Request Forgery Vulnerabilities, CVE: CVE-2024-20252.
Cisco rates this vulnerability as CRITICAL.
Description
Cisco announced multiple vulnerabilities in the Cisco Expressway Series that could allow an unauthenticated, remote attacker to conduct cross-site request forgery (CSRF) attacks, which could allow the attacker to execute commands on the device. A successful attack would give a malicious attacker complete control over the system. The attacker does not need to compromise credentials to exploit this vulnerability.
Scope
This vulnerability is specific to Cisco Expressway Series servers. Per Cisco’s Security Advisory notice, the specific versions that are affected are as follows:
Cisco Expressway Series Release |
First Fixed Release |
Earlier than 14.0 | Migrate to a fixed release |
14 | 14.3.4 |
15 | 15.0.0 |
Course of Action
Cisco has released a patch to remediate affected systems.
For clients who have Systems Engineering manage their Cisco Expressway Series servers, we will proactively patch your systems and will be in touch about remediating this vulnerability.
For clients who manage their own Cisco Expressway Series servers, we strongly recommend you have your affected systems patched for this vulnerability. If you would like our assistance with patching, please reach out to Systems Engineering Customer Service at 207.772.4199 to have a ticket opened to get your system updated.
If you are a Systems Engineering client and have questions about this Security Alert, please contact your Account Manager.