vulnerability

Cisco FTD: CVE-2024-20431: Cisco Firepower Threat Defense Software Geolocation ACL Bypass Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:P/A:N)	2024-10-23	2025-01-29	2025-02-12

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:P/A:N)

Published

2024-10-23

Added

2025-01-29

Modified

2025-02-12

Description

A vulnerability in the geolocation access control feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass an access control policy.

This vulnerability is due to improper assignment of geolocation data. An attacker could exploit this vulnerability by sending traffic through an affected device. A successful exploit could allow the attacker to bypass a geolocation-based access control policy and successfully send traffic to a protected device.

Solution

cisco-ftd-upgrade-latest

References

CVE-2024-20431
https://attackerkb.com/topics/CVE-2024-20431
URL-https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-geoip-bypass-MB4zRDu
CISCO-cisco-sa-ftd-geoip-bypass-MB4zRDu

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today