Main Vulnerability Database SB20240717137

SB20240717137 - Remote code execution in Cisco Secure Email Gateway

Published: July 17, 2024

Security Bulletin ID SB20240717137

Severity

Critical

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Information disclosure

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Path traversal (CVE-ID: CVE-2024-20401)

The vulnerability allows a remote attacker to overwrite arbitrary files on the system.

The vulnerability exists due to input validation error when processing email attachments if file analysis and content filters are enabled. A remote attacker can send a specially crafted email attachment and overwrite arbitrary files on the system with root privileges.

Successful exploitation of the vulnerability may result in complete system compromise.

Remediation

Install update from vendor's website.

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-afw-bGG2UsjH
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwj53998