CVE-2024-20513
CVE-2024-20513 is a medium-severity vulnerability in Cisco Meraki Mx65 Firmware with a CVSS 3.x base score of 5.8. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-639.
Key facts
- Severity: Medium (CVSS 3.x base score 5.8)
- EPSS exploit prediction: 0% (36th percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2024-18228
- Weakness: CWE-639
- Affected product: Cisco Meraki Mx65 Firmware
- Published:
- Last modified:
Description
A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition for targeted users of the AnyConnect service on an affected device. This vulnerability is due to insufficient entropy for handlers that are used during SSL VPN session establishment. An unauthenticated attacker could exploit this vulnerability by brute forcing valid session handlers. An authenticated attacker could exploit this vulnerability by connecting to the AnyConnect VPN service of an affected device to retrieve a valid session handler and, based on that handler, predict further valid session handlers. The attacker would then send a crafted HTTPS request using the brute-forced or predicted session handler to the AnyConnect VPN server of the device. A successful exploit could allow the attacker to terminate targeted SSL VPN sessions, forcing remote users to initiate new VPN connections and reauthenticate.
Frequently asked questions
- What is CVE-2024-20513?
- A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition for targeted users of the AnyConnect service on an affected device. This vulnerability is due to insufficient entropy for handlers that are used during SSL VPN session establishment. An unauthenticated attacker could exploit this vulnerability by brute forcing valid session handlers. An authenticated attacker could exploit this vulnerability by connecting to the AnyConnect VPN service of an affected device to retrieve a valid session handler and, based on that handler, predict further valid session handlers. The attacker would then send a crafted HTTPS request using the brute-forced or predicted session handler to the AnyConnect VPN server of the device. A successful exploit could allow the attacker to terminate targeted SSL VPN sessions, forcing remote users to initiate new VPN connections and reauthenticate.
- How severe is CVE-2024-20513?
- CVE-2024-20513 has a CVSS 3.x base score of 5.8, rated medium severity. It is exploitable over network with low attack complexity, requires no privileges and no user interaction. Impact on confidentiality is none, integrity none, and availability low.
- Is CVE-2024-20513 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (36th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2024-20513?
- CVE-2024-20513 primarily affects Cisco Meraki Mx65 Firmware. In total, 25 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2024-20513?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- Does CVE-2024-20513 have an EU (EUVD) identifier?
- Yes. CVE-2024-20513 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2024-18228.
- When was CVE-2024-20513 published?
- CVE-2024-20513 was published on 2024-10-02 and last updated on 2026-06-17.
References
Affected products (25)
- cpe:2.3:o:cisco:meraki_mx65_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx64_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_z4c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_z4_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_z3c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_z3_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_vmx_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx600_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx450_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx400_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx250_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx105_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx100_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx95_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx85_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx84_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx75_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx68w_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx68cw_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx68_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx67w_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx67c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx67_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx65w_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:meraki_mx64w_firmware:*:*:*:*:*:*:*:*
More vulnerabilities in Cisco Meraki Mx65 Firmware
- CVE-2024-20501 — High (CVSS 8.6): Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker…
- CVE-2024-20499 — High (CVSS 8.6): Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker…
- CVE-2024-20498 — High (CVSS 8.6): Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker…
- CVE-2022-20933 — High (CVSS 8.6): A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z3 Teleworker Gateway devices…
- CVE-2024-20509 — Medium (CVSS 5.8): A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway…
- CVE-2024-20502 — Medium (CVSS 5.8): A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway…
All CVEs affecting Cisco Meraki Mx65 Firmware →
Other CWE-639 (Authorization Bypass Through User-Controlled Key (IDOR)) vulnerabilities
- CVE-2025-40805 — Critical (CVSS 10.0): Affected devices do not properly enforce user authentication on specific API endpoints. This could facilitate an…
- CVE-2024-45032 — Critical (CVSS 10.0): A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1.9.5), Industrial Edge…
- CVE-2026-34037 — Critical (CVSS 9.9): Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to…
- CVE-2026-52782 — Critical (CVSS 9.9): OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, there is an IDOR through…
- CVE-2026-45552 — Critical (CVSS 9.9): Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior,…
- CVE-2026-29200 — Critical (CVSS 9.9): A critical IDOR vulnerability has been discovered in Comet Backup affecting all versions from 20.11.0 to 26.1.1 and…
Browse all CWE-639 (Authorization Bypass Through User-Controlled Key (IDOR)) vulnerabilities →