Description

A vulnerability in Cisco Smart Licensing Utility (CSLU) could allow an unauthenticated, remote attacker to log into an affected system by using a static administrative credential. This vulnerability is due to an undocumented static user credential for an administrative account. An attacker could exploit this vulnerability by using the static credentials to login to the affected system. A successful exploit could allow the attacker to login to the affected system with administrative rights over the CSLU application API.

INFO

Published Date :

2024-09-04T16:28:39.669Z

Last Modified :

2025-10-21T22:55:46.010Z

Source :

cisco
AFFECTED PRODUCTS

The following products are affected by CVE-2024-20439 vulnerability.

Vendors Products
Cisco
  • Cisco Smart License Utility
  • Smart License Utility
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-20439.

URL Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cslu-7gHMzWmw cve-icon cve-icon
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-20439 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact