This website uses cookies

Our website, platform and/or any sub domains use cookies to understand how you use our services, and to improve both your experience and our marketing relevance.

Join us for Deploy in Austin (21-22 Jan) or sign-up to attend virtually. Register Now→

Cisco Patches Severe Password Reset Flaw in SSM On-Prem License Servers

Updated on July 19, 2024

2 Min Read
Cisco Patches Severe Password Reset Flaw in SSM On-Prem License Servers

Cisco has released a patch to address a critical password vulnerability affecting several versions of its Smart Software Manager On-Prem (Cisco SSM On-Prem), which allows a subset of customers to manage product licenses using an on-premises server.

The company provided limited details about the vulnerability, identified as CVE-2024-20419 (CWE-620), but it has received a maximum CVSS rating of 10.0. The flaw lies in the password reset process, which could be exploited to gain control of an SSM On-Prem server.

Cisco SSM On-Prem allows organizations to manage licenses within their datacenter, an important feature for sectors requiring reliable connectivity or heightened security, such as energy, shipping, financial services, and government.

According to Cisco’s advisory, all versions of SSM On-Prem except the most recent ones are at risk, including Cisco SSM Satellite (the product’s name before version 7.0, released in 2019). Vulnerable versions include version 8-202206 and earlier, with the first fixed version being version 8-202212. Version 9 is not affected.

via GIPHY

The issue was either inadvertently fixed in newer versions or known for some time but withheld from disclosure until a fix was prepared. The advisory states that the flaw “could allow an unauthenticated, remote attacker to change the password of any user, including administrative users.”

An attacker could exploit the vulnerability by sending crafted HTTP requests to an affected device, potentially accessing the web UI or API with the privileges of the compromised user. This access could lead to stolen licenses or interference with licensed features, but more likely, it would enable deeper network infiltration.

However, any attack would require initiating a password change, which administrators would likely notice quickly. Regaining control of a compromised server, though, would be challenging. Cisco’s product security incident response team (PSIRT) is currently unaware of any malicious exploits targeting this vulnerability, suggesting the issue is contained.

This flaw in SSM On-Prem is among 10 flaws patched by Cisco in its July update.

Share your opinion in the comment section. COMMENT NOW

Share This Article

Start Growing with Cloudways Today.

Our Clients Love us because we never compromise on these

Abdul Rehman

Abdul is a tech-savvy, coffee-fueled, and creatively driven marketer who loves keeping up with the latest software updates and tech gadgets. He's also a skilled technical writer who can explain complex concepts simply for a broad audience. Abdul enjoys sharing his knowledge of the Cloud industry through user manuals, documentation, and blog posts.

×

Webinar: How to Get 100% Scores on Core Web Vitals

Join Joe Williams & Aleksandar Savkovic on 29th of March, 2021.

Do you like what you read?

Get the Latest Updates

Share Your Feedback

Please insert Content

Thank you for your feedback!

Do you like what you read?

Get the Latest Updates

Share Your Feedback

Please insert Content

Thank you for your feedback!

Want to Experience the Cloudways Platform in Its Full Glory?

Take a FREE guided tour of Cloudways and see for yourself how easily you can manage your server & apps on the leading cloud-hosting platform.

Start my tour