A vulnerability in the CronJob scheduler API of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote malicious user to perform a command injection attack. The vulnerability is due to incorrect input validation of user-supplied data. An attacker could exploit this vulnerability by sending a malicious packet. A successful exploit could allow the malicious user to execute arbitrary commands with root privileges. Cisco Bug IDs: CSCvi42263.
|Cisco||Application Policy Infrastructure Controller Enterprise Module||Dnac1.1|