automatic module_metadata_base.json update

msjenkins-r7 · msjenkins-r7 · commit f91c95b0a0ef · 2024-09-24T11:43:07.000-05:00
diff --git a/db/modules_metadata_base.json b/db/modules_metadata_base.json
@@ -1866,6 +1866,69 @@
 
     ]
   },
+  "auxiliary_admin/http/cisco_ssm_onprem_account": {
+    "name": "Cisco Smart Software Manager (SSM) On-Prem Account Takeover (CVE-2024-20419)",
+    "fullname": "auxiliary/admin/http/cisco_ssm_onprem_account",
+    "aliases": [
+
+    ],
+    "rank": 300,
+    "disclosure_date": "2024-07-20",
+    "type": "auxiliary",
+    "author": [
+      "Michael Heinzl",
+      "Mohammed Adel"
+    ],
+    "description": "This module exploits an improper access control vulnerability in Cisco Smart Software Manager (SSM) On-Prem <= 8-202206. An unauthenticated remote attacker\n          can change the password of any existing user, including administrative users.",
+    "references": [
+      "CVE-2024-20419",
+      "URL-https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cssm-auth-sLw3uhUy#vp",
+      "URL-https://www.0xpolar.com/blog/CVE-2024-20419"
+    ],
+    "platform": "",
+    "arch": "",
+    "rport": 8443,
+    "autofilter_ports": [
+      80,
+      8080,
+      443,
+      8000,
+      8888,
+      8880,
+      8008,
+      3000,
+      8443
+    ],
+    "autofilter_services": [
+      "http",
+      "https"
+    ],
+    "targets": null,
+    "mod_time": "2024-09-23 14:16:26 +0000",
+    "path": "/modules/auxiliary/admin/http/cisco_ssm_onprem_account.rb",
+    "is_install_path": true,
+    "ref_name": "admin/http/cisco_ssm_onprem_account",
+    "check": true,
+    "post_auth": true,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "Reliability": [
+        "repeatable-session"
+      ],
+      "SideEffects": [
+        "ioc-in-logs",
+        "config-changes"
+      ]
+    },
+    "session_types": false,
+    "needs_cleanup": false,
+    "actions": [
+
+    ]
+  },
   "auxiliary_admin/http/cnpilot_r_cmd_exec": {
     "name": "Cambium cnPilot r200/r201 Command Execution as 'root'",
     "fullname": "auxiliary/admin/http/cnpilot_r_cmd_exec",
