CVE-2024-20324

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, low-privileged, local attacker to access WLAN configuration details including passwords.

This vulnerability is due to improper privilege checks. An attacker could exploit this vulnerability by using the show and show tech wireless CLI commands to access configuration details, including passwords. A successful exploit could allow the attacker to access configuration details that they are not authorized to access.

Published: Mar 27, 2024
Updated: Nov 16, 2025
CVE: CVE-2024-20324
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-274

Affected Software
References

Software	From	Fixed in
cisco / ios_xe	16.10.1	16.10.1.x
cisco / ios_xe	16.12.1	16.12.1.x
cisco / ios_xe	16.11.1	16.11.1.x
cisco / ios_xe	17.1.1	17.1.1.x
cisco / ios_xe	16.11.1a	16.11.1a.x
cisco / ios_xe	16.12.1t	16.12.1t.x
cisco / ios_xe	16.10.1s	16.10.1s.x
cisco / ios_xe	16.10.1e	16.10.1e.x
cisco / ios_xe	16.11.1b	16.11.1b.x
cisco / ios_xe	16.11.2	16.11.2.x
cisco / ios_xe	16.12.1s	16.12.1s.x
cisco / ios_xe	16.12.3	16.12.3.x
cisco / ios_xe	16.12.8	16.12.8.x
cisco / ios_xe	16.12.2s	16.12.2s.x
cisco / ios_xe	16.12.4	16.12.4.x
cisco / ios_xe	17.1.1s	17.1.1s.x
cisco / ios_xe	17.2.1	17.2.1.x
cisco / ios_xe	17.4.1	17.4.1.x
cisco / ios_xe	17.6.1	17.6.1.x
cisco / ios_xe	17.6.2	17.6.2.x
cisco / ios_xe	17.6.3	17.6.3.x
cisco / ios_xe	17.7.1	17.7.1.x
cisco / ios_xe	17.8.1	17.8.1.x
cisco / ios_xe	17.9.1	17.9.1.x
cisco / ios_xe	17.11.1	17.11.1.x
cisco / ios_xe	16.12.3s	16.12.3s.x
cisco / ios_xe	16.12.4a	16.12.4a.x
cisco / ios_xe	16.12.5	16.12.5.x
cisco / ios_xe	16.12.6	16.12.6.x
cisco / ios_xe	16.12.6a	16.12.6a.x
cisco / ios_xe	16.12.7	16.12.7.x
cisco / ios_xe	17.1.1t	17.1.1t.x
cisco / ios_xe	17.1.3	17.1.3.x
cisco / ios_xe	17.2.1a	17.2.1a.x
cisco / ios_xe	17.3.1	17.3.1.x
cisco / ios_xe	17.3.2	17.3.2.x
cisco / ios_xe	17.3.3	17.3.3.x
cisco / ios_xe	17.3.2a	17.3.2a.x
cisco / ios_xe	17.3.4	17.3.4.x
cisco / ios_xe	17.3.5	17.3.5.x
cisco / ios_xe	17.3.4c	17.3.4c.x
cisco / ios_xe	17.5.1	17.5.1.x
cisco / ios_xe	17.6.4	17.6.4.x
cisco / ios_xe	17.6.5	17.6.5.x
cisco / ios_xe	17.6.6	17.6.6.x
cisco / ios_xe	17.6.6a	17.6.6a.x
cisco / ios_xe	17.6.5a	17.6.5a.x
cisco / ios_xe	17.10.1	17.10.1.x
cisco / ios_xe	17.10.1a	17.10.1a.x
cisco / ios_xe	17.9.2	17.9.2.x
cisco / ios_xe	17.9.3	17.9.3.x
cisco / ios_xe	17.9.4	17.9.4.x
cisco / ios_xe	17.9.4a	17.9.4a.x
cisco / ios_xe	17.12.1	17.12.1.x
cisco / ios_xe	17.3.6	17.3.6.x
cisco / ios_xe	17.3.5a	17.3.5a.x
cisco / ios_xe	17.3.5b	17.3.5b.x
cisco / ios_xe	17.3.7	17.3.7.x
cisco / ios_xe	17.3.8	17.3.8.x
cisco / ios_xe	17.3.8a	17.3.8a.x

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-wlc-privesc-RjSMrmPK

Vulnerability Database

311,379

CVE-2024-20324

Deep Security Visibility Without the Complexity