From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. Vulnerability Description: - Vulnerability Name: Cisco Application Policy Infrastructure Controller Unauthorized Policy Actions Vulnerability - Vulnerability ID: cisco-sa-apic-cousmo-uBpBYGbq - CVE Number: CVE-2024-20279 - CWE Number: CWE-284 - CVSS Score: Base 4.3 2. Affected Products: - Affected Product: Cisco Application Policy Infrastructure Controller (APIC) - Affected Versions: 5.2 and earlier versions 3. Vulnerability Impact: - Description: A vulnerability exists in the implementation of restricted security domains in Cisco Application Policy Infrastructure Controller (APIC), allowing unauthorized remote attackers to modify default system policies, such as Quality of Service (QoS) policies. - Impact: Due to improper access control over restricted security domains, attackers can exploit this vulnerability to read, modify, or delete default system policies, which are implicitly used by all tenants in the fabric, leading to network traffic disruption. 4. Remediation: - Fix Released: Cisco has released software updates to address this vulnerability. - Workaround: No workaround is available to mitigate this vulnerability. 5. Affected Product List: - Affected Product: Cisco Application Policy Infrastructure Controller (APIC) if configured with a restricted security domain associated with a user having port-mgmt permissions. 6. Detailed Information: - Configuration Check: Run the command to check if a restricted security domain is configured. - User Permission Check: Run the command to check if users have port-mgmt permissions. 7. Affected Product Confirmation: - Not Affected: Cisco Cloud Network Controller (formerly known as Cloud APIC) is not affected by this vulnerability. 8. Source: - Discovery Method: The vulnerability was discovered during internal security testing. 9. Related Links: - Security Vulnerability Policy: Security Vulnerability Policy - Subscribe to Cisco Security Notifications: Subscribe to Cisco Security Notifications This information helps users understand the vulnerability details, affected products, remediation steps, and how to check and confirm affected configurations.