CRITICAL✓ PATCH🇬🇧 English

CVE-2022-20861

CVSS 9.8v3.1pub. 2022-07-21upd. 2024-11-21

Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, read or upload container image files, or perform a cross-site request forgery attack. For more information about these vulnerabilities, see the Details section of this advisory.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Cisco Nexus Dashboard

    APP
    Cisco
    1.1 – 2.2\(1e\) (bez)
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
Container
CWE
Referencje

Powiązane podatności

CVE-2022-20858CRITICAL9.8ten sam produkt

Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute a...

CVE-2022-20857CRITICAL9.8ten sam produkt

Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute a...

CVE-2025-20163HIGH8.7ten sam produkt

A vulnerability in the SSH implementation of Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an una...

CVE-2024-20281HIGH7.5ten sam produkt

A vulnerability in the web-based management interface of Cisco Nexus Dashboard and Cisco Nexus Dashboard hoste...

CVE-2023-20014HIGH7.5ten sam produkt

A vulnerability in the DNS functionality of Cisco Nexus Dashboard Software could allow an unauthenticated, rem...