1 results (0.002 seconds)
CVSS: 7.2EPSS: 0%CPEs: 286EXPL: 0
CVSS: 7.2EPSS: 0%CPEs: 286EXPL: 0CVE-2024-20263
https://notcve.org/view.php?id=CVE-2024-20263
26 Jan 2024 — A vulnerability with the access control list (ACL) management within a stacked switch configuration of Cisco Business 250 Series Smart Switches and Business 350 Series Managed Switches could allow an unauthenticated, remote attacker to bypass protection offered by a configured ACL on an affected device. This vulnerability is due to incorrect processing of ACLs on a stacked configuration when either the primary or backup switches experience a full stack reload or power cycle. An attacker could exploit this v... • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-bus-acl-bypass-5zn9hNJk • CWE-284: Improper Access Control •