Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, read or upload container image files, or perform a cross-site request forgery attack. For more information about these vulnerabilities, see the Details section of this advisory.
References
Link | Resource |
---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndb-mhcvuln-vpsBPJ9y | Vendor Advisory |
Configurations
History
27 Jul 2022, 19:17
Type | Values Removed | Values Added |
---|---|---|
References | (CISCO) https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndb-mhcvuln-vpsBPJ9y - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:a:cisco:nexus_dashboard:*:*:*:*:*:*:*:* | |
CWE | CWE-306 |
21 Jul 2022, 04:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-07-21 04:15
Updated : 2024-02-04 22:51
NVD link : CVE-2022-20858
Mitre link : CVE-2022-20858
CVE.ORG link : CVE-2022-20858
JSON object : View
Products Affected
cisco
- nexus_dashboard
CWE
CWE-306
Missing Authentication for Critical Function