Vulnerability in Cisco APIC Could Allow Attacker to Disrupt Network Traffic

CVE-2024-20279

What is CVE-2024-20279?

A vulnerability exists in the restricted security domain implementation of the Cisco Application Policy Infrastructure Controller (APIC). This flaw arises from improper access control, allowing an authenticated remote attacker to manipulate default system policies, such as quality of service (QoS) settings. Exploitation of this vulnerability could lead to unauthorized modification of child policies associated with default system policies that impact all tenants within the fabric. Although exploitation is restricted to policies under the attacker's authorization, the consequences include potential disruption to network traffic, posing significant risks to overall network performance and integrity.

References