// For flags

CVE-2024-20509

Cisco Meraki MX and Z3 Teleworker Gateway AnyConnect VPN Session Takeover and Denial of Service Vulnerability

Severity Score

5.8
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track
*SSVC
Descriptions

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN session or cause a denial of service (DoS) condition for individual users of the AnyConnect VPN service on an affected device. This vulnerability is due to weak entropy for handlers that are used during the VPN authentication process as well as a race condition that exists in the same process. An attacker could exploit this vulnerability by correctly guessing an authentication handler and then sending crafted HTTPS requests to an affected device. A successful exploit could allow the attacker to take over the AnyConnect VPN session from a target user or prevent the target user from establishing an AnyConnect VPN session with the affected device.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
None
Integrity
None
Availability
Low
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Network
Attack Complexity
High
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:Track
Exploitation
None
Automatable
No
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2023-11-08 CVE Reserved
  • 2024-10-02 CVE Published
  • 2024-10-02 CVE Updated
  • 2024-10-09 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
 Cisco
Search vendor "Cisco" for product "Cisco"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx100 Firmware
Search vendor "Cisco" for product "Meraki Mx100 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx105 Firmware
Search vendor "Cisco" for product "Meraki Mx105 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx250 Firmware
Search vendor "Cisco" for product "Meraki Mx250 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx400 Firmware
Search vendor "Cisco" for product "Meraki Mx400 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx450 Firmware
Search vendor "Cisco" for product "Meraki Mx450 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx600 Firmware
Search vendor "Cisco" for product "Meraki Mx600 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx64 Firmware
Search vendor "Cisco" for product "Meraki Mx64 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx64w Firmware
Search vendor "Cisco" for product "Meraki Mx64w Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx65 Firmware
Search vendor "Cisco" for product "Meraki Mx65 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx65w Firmware
Search vendor "Cisco" for product "Meraki Mx65w Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx67 Firmware
Search vendor "Cisco" for product "Meraki Mx67 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx67c Firmware
Search vendor "Cisco" for product "Meraki Mx67c Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx67w Firmware
Search vendor "Cisco" for product "Meraki Mx67w Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx68 Firmware
Search vendor "Cisco" for product "Meraki Mx68 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx68cw Firmware
Search vendor "Cisco" for product "Meraki Mx68cw Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx68w Firmware
Search vendor "Cisco" for product "Meraki Mx68w Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx75 Firmware
Search vendor "Cisco" for product "Meraki Mx75 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx84 Firmware
Search vendor "Cisco" for product "Meraki Mx84 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx85 Firmware
Search vendor "Cisco" for product "Meraki Mx85 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Mx95 Firmware
Search vendor "Cisco" for product "Meraki Mx95 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Vmx Firmware
Search vendor "Cisco" for product "Meraki Vmx Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Z3 Firmware
Search vendor "Cisco" for product "Meraki Z3 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Z3c Firmware
Search vendor "Cisco" for product "Meraki Z3c Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Z4 Firmware
Search vendor "Cisco" for product "Meraki Z4 Firmware"
*-
Affected
Cisco
Search vendor "Cisco"
 Meraki Z4c Firmware
Search vendor "Cisco" for product "Meraki Z4c Firmware"
*-
Affected