CVE-2024-20388 - Cisco Firepower Management Center Improper Authentication Valid Username Disclosure

1 month ago 9

ARTICLE AD BOX

CVE ID : CVE-2024-20388
Published : Oct. 23, 2024, 6:15 p.m. | 24 minutes ago
Description : A vulnerability in the password change feature of Cisco Firepower Management Center (FMC) software could allow an unauthenticated, remote attacker to determine valid user names on an affected device. This vulnerability is due to improper authentication of password update responses. An attacker could exploit this vulnerability by forcing a password reset on an affected device. A successful exploit could allow the attacker to determine valid user names in the unauthenticated response to a forced password reset.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Read Entire Article

CVE-2024-20388 - Cisco Firepower Management Center Improper Authentication Valid Username Disclosure

ARTICLE AD BOX

Related

CVE-2024-49203 - Querydsl JPA orderBy SQL Injection

CVE-2024-52702 - MyBB Stored XSS Vulnerability

CVE-2024-48986 - Micrium mBedOS HCI Buffer Overflow Vulnerab...

Trending

Popular

CVE-2024-6343 - Zyxel ATP, USG FLEX, USG FLEX 50(W), USG20(W...

CVE-2024-5053 - Fluent Forms Mailchimp API Key Update Weakne...

CVE-2024-8367 - HM Courts & Tribunals Service Probate Back O...

CVE-2024-44946 - Linux KCM kcm_sendmsg() UAF

CVE-2024-8368 - "Code-projects Hospital Management System SQ...