QID 317209
Date Published: 2022-07-21
QID 317209: Cisco Nexus Dashboard Multiple Vulnerabilities (cisco-sa-ndb-mhcvuln-vpsBPJ9y)
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, read or upload container image files, or perform a cross-site request forgery attack.
Affected Products:
Cisco Nexus Dashboard (Cisco APIC)
Cisco APIC Version 1.1
Cisco APIC Version 2.0
Cisco APIC Version 2.1
Cisco APIC Version 2.2 Prior to 2.2(1e)
QID Detection Logic (Authenticated):
The check matches Cisco APIC version retrieved via Unix Auth using "show version" command.
Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, read or upload container image files, or perform a cross-site request forgery attack.
Customers are advised to refer to cisco-sa-ndb-mhcvuln-vpsBPJ9y for more information.
- cisco-sa-ndb-mhcvuln-vpsBPJ9y -
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndb-mhcvuln-vpsBPJ9y
CVEs related to QID 317209
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| cisco-sa-ndb-mhcvuln-vpsBPJ9y |
|