Cisco

Nexus Dashboard

27 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2026-20174

Medienbericht
  • EPSS 0.06%
  • Veröffentlicht 01.04.2026 16:29:22
  • Zuletzt bearbeitet 03.04.2026 16:11:11

A vulnerability in the Metadata update feature of Cisco Nexus Dashboard Insights could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to insufficient validation of the metadata upd...

6.5

CVE-2026-20042

Medienbericht
  • EPSS 0.03%
  • Veröffentlicht 01.04.2026 16:27:49
  • Zuletzt bearbeitet 03.04.2026 16:11:11

A vulnerability in the configuration backup feature of Cisco Nexus Dashboard could allow an attacker who has the encryption password and access to Full or Config-only backup files to access sensitive information. This vulnerability exists because ...

6.1

CVE-2026-20041

Medienbericht
  • EPSS 0.02%
  • Veröffentlicht 01.04.2026 16:27:49
  • Zuletzt bearbeitet 03.04.2026 16:11:11

A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthenticated, remote attacker to conduct a server-side request forgery (SSRF) attack through an affected device. This vulnerability is due to improper in...

5

CVE-2025-20348

  • EPSS 0.08%
  • Veröffentlicht 27.08.2025 16:23:01
  • Zuletzt bearbeitet 08.09.2025 16:22:06

A vulnerability in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an authenticated, low-privileged, remote attacker to view sensitive information or upload and modify files on an affecte...

5.4

CVE-2025-20347

  • EPSS 0.08%
  • Veröffentlicht 27.08.2025 16:22:59
  • Zuletzt bearbeitet 08.09.2025 16:21:08

A vulnerability in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an authenticated, low-privileged, remote attacker to view sensitive information or upload and modify files on an affecte...

7.2

CVE-2025-20344

  • EPSS 0.14%
  • Veröffentlicht 27.08.2025 16:22:59
  • Zuletzt bearbeitet 08.09.2025 16:20:53

A vulnerability in the backup restore functionality of Cisco Nexus Dashboard could allow an authenticated, remote attacker to conduct a path traversal attack on an affected device. This vulnerability is due to insufficient validation of the conten...

8.7

CVE-2025-20163

Medienbericht
  • EPSS 0.11%
  • Veröffentlicht 04.06.2025 16:17:44
  • Zuletzt bearbeitet 22.07.2025 16:58:34

A vulnerability in the SSH implementation of Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an unauthenticated, remote attacker to impersonate Cisco NDFC-managed devices. This vulnerability is due to insufficient SSH host key validatio...

5.3

CVE-2025-20150

  • EPSS 0.11%
  • Veröffentlicht 16.04.2025 16:07:30
  • Zuletzt bearbeitet 07.08.2025 00:22:32

A vulnerability in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to enumerate LDAP user accounts. This vulnerability is due to the improper handling of LDAP authentication requests. An attacker could exploit this vulnerabil...

5.4

CVE-2024-20477

  • EPSS 0.46%
  • Veröffentlicht 02.10.2024 17:15:17
  • Zuletzt bearbeitet 08.10.2024 16:00:30

A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to upload or delete files on an affected device. This vulnerability exists because of missing authorization controls on the...

5.4

CVE-2024-20442

  • EPSS 0.33%
  • Veröffentlicht 02.10.2024 17:15:16
  • Zuletzt bearbeitet 07.10.2024 20:11:48

A vulnerability in the REST API endpoints of Cisco Nexus Dashboard could allow an authenticated, low-privileged, remote attacker to perform limited Administrator actions on an affected device. This vulnerability is due to insufficient authorizatio...