The vulnerability of the identification management service of the Cisco Digital Network Architecture (DNA) Center arises from the lack of protective measures for the website structure, allowing attackers to access confidential information.

🗓️ 22 Mar 2019 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Cisco Digital Network Architecture Center web interface lacks protection for page structure, enabling remote data disclosure.

Reporter	Title	Published	Views	Family All 10
Cisco	Cisco DNA Center Access Contract Stored Cross-Site Scripting Vulnerability	6 Mar 201916:00	–	cisco
CNVD	Cisco Digital Network Architecture Center Cross-Site Scripting Vulnerability	7 Mar 201900:00	–	cnvd
CVE	CVE-2019-1707	11 Mar 201922:00	–	cve
Cvelist	CVE-2019-1707 Cisco DNA Center Access Contract Stored Cross-Site Scripting Vulnerability	11 Mar 201922:00	–	cvelist
EUVD	EUVD-2019-10264	7 Oct 202500:30	–	euvd
NVD	CVE-2019-1707	11 Mar 201921:29	–	nvd
OSV	CVE-2019-1707	11 Mar 201921:29	–	osv
Prion	Cross site scripting	11 Mar 201921:29	–	prion
Positive Technologies	PT-2019-1583 · Cisco · Cisco Dna Center	6 Mar 201900:00	–	ptsecurity
Vulnrichment	CVE-2019-1707 Cisco DNA Center Access Contract Stored Cross-Site Scripting Vulnerability	11 Mar 201922:00	–	vulnrichment

Vulners

Node

cisco_systems cisco_dna_centerRange<1.2.5

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-dna-xss
securityfocus	www.securityfocus.com/bid/107315
web	www.web.nvd.nist.gov/view/vuln/detail

23 Mar 2021 00:00Current

5.9Medium risk

Vulners AI Score5.9

CVSS 35.4

CVSS 25.5

EPSS0.00171

Cisco Digital Network Architecture Center web interface vulnerability page structure protection remote data disclosure