Cisco NX-OS Software Image Verification Bypass Vulnerability

A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification. This vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL Security Impact Rating: High CVE: CVE-2024-20397
http://news.poseidon-us.com/TGb9vQ

Cisco NX-OS Software Image Verification Bypass Vulnerability

Like this:

Related

More Posts

[Guest Diary] Business Email Compromise, (Thu, Dec 5th)

Complexity of Cloud Environments

The Upward Spiral Continues: U.S. Army Special Operations Command Celebrates 35 Years

GSA steps up plans to offload underutilized federal buildings

GSA steps up plans to offload underutilized federal buildings

Salesforce teases next-gen Agentforce, parades early wins

Where Justice Department lawyers go when they need guidance of their own

How other national governments handle grants management

How other national governments handle grants management

Share this:

Like this:

Related

More Posts