Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco dna center vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2023-20182
Multiple vulnerabilities in the API of Cisco DNA Center Software could allow an authenticated, remote malicious user to read information from a restricted container, enumerate user information, or execute arbitrary commands in a restricted container as the root user. For more inf...
Cisco Dna Center
8.8
CVSSv3
CVE-2023-20055
A vulnerability in the management API of Cisco DNA Center could allow an authenticated, remote malicious user to elevate privileges in the context of the web-based management interface on an affected device. This vulnerability is due to the unintended exposure of sensitive inform...
Cisco Dna Center
Cisco Dna Center 2.3.4.0
8.8
CVSSv3
CVE-2021-1257
A vulnerability in the web-based management interface of Cisco DNA Center Software could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack to manipulate an authenticated user into executing malicious actions without their awaren...
Cisco Dna Center
Mcafee Agent
8.8
CVSSv3
CVE-2021-1264
A vulnerability in the Command Runner tool of Cisco DNA Center could allow an authenticated, remote malicious user to perform a command injection attack. The vulnerability is due to insufficient input validation by the Command Runner tool. An attacker could exploit this vulnerabi...
Cisco Dna Center
1 Article
8.8
CVSSv3
CVE-2021-1303
A vulnerability in the user management roles of Cisco DNA Center could allow an authenticated, remote malicious user to execute unauthorized commands on an affected device. The vulnerability is due to improper enforcement of actions for assigned user roles. An attacker could expl...
Cisco Dna Center
8.8
CVSSv3
CVE-2020-3281
A vulnerability in the audit logging component of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote malicious user to view sensitive information in clear text. The vulnerability is due to the storage of certain unencrypted credentials. An attack...
Cisco Digital Network Architecture Center
8.8
CVSSv3
CVE-2018-0427
A vulnerability in the CronJob scheduler API of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote malicious user to perform a command injection attack. The vulnerability is due to incorrect input validation of user-supplied data. An attacker cou...
Cisco Application Policy Infrastructure Controller Enterprise Module Dnac1.1
8.2
CVSSv3
CVE-2023-20223
A vulnerability in Cisco DNA Center could allow an unauthenticated, remote malicious user to read and modify data in a repository that belongs to an internal service on an affected device. This vulnerability is due to insufficient access control enforcement on API requests. An at...
Cisco Dna Center
8.1
CVSSv3
CVE-2019-1841
A vulnerability in the Software Image Management feature of Cisco DNA Center could allow an authenticated, remote malicious user to access to internal services without additional authentication. The vulnerability is due to insufficient validation of user-supplied input. An attack...
Cisco Dna Center
7.8
CVSSv3
CVE-2018-0368
A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an authenticated, local malicious user to access sensitive information on an affected system. The vulnerability is due to insufficient security restrictions imposed by the affected software. An attacke...
Cisco Application Policy Infrastructure Controller Enterprise Module 1.1 Base
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »