CVE-2024-20397

A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification.  This vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software.

Severity	MEDIUM
CVSS	5.2
CWE	CWE-284
KEV
Published	1 year ago
Modified	1 month ago

Related Products

Product	Advisory
Cisco Nexus Dashboard	cisco-sa-nxos-image-sig-bypas-pQDRQvjL
Cisco MDS 9000 Family of Multilayer Switches	cisco-sa-nxos-image-sig-bypas-pQDRQvjL
Cisco Unified Computing System (Managed)	cisco-sa-nxos-image-sig-bypas-pQDRQvjL
Cisco Nexus 9000 Series Switches	cisco-sa-nxos-image-sig-bypas-pQDRQvjL
Cisco Nexus 7000 Series Switches	cisco-sa-nxos-image-sig-bypas-pQDRQvjL
Cisco Nexus 3000 Series Switches	cisco-sa-nxos-image-sig-bypas-pQDRQvjL
Cisco Nexus 3000 Series Switch	cisco-sa-nxos-image-sig-bypas-pQDRQvjL
Cisco NX-OS System Software in ACI Mode	cisco-sa-nxos-image-sig-bypas-pQDRQvjL
Cisco NX-OS Software	cisco-sa-nxos-image-sig-bypas-pQDRQvjL
Cisco MDS 9000 Multilayer Directors and Fabric Switches	cisco-sa-nxos-image-sig-bypas-pQDRQvjL