Unrated severityNVD Advisory· Published Sep 4, 2024· Updated Apr 1, 2025
CVE-2024-20440
CVE-2024-20440
Description
A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker to access sensitive information.
This vulnerability is due to excessive verbosity in a debug log file. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain log files that contain sensitive data, including credentials that can be used to access the API.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 2.1.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.