CVE-2024-20442

🗓️ 02 Oct 2024 16:53:41Reported by ciscoType

Vulnerability in Cisco Nexus Dashboard REST AP

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-20442	2 Oct 202419:42	–	circl
Cisco	Cisco Nexus Dashboard and Nexus Dashboard Fabric Controller Unauthorized REST API Vulnerabilities	2 Oct 202416:00	–	cisco
CNNVD	Cisco Nexus Dashboard 安全漏洞	2 Oct 202400:00	–	cnnvd
Cvelist	CVE-2024-20442 Cisco Nexus Dashboard Unauthorized API Endpoints Vulnerability	2 Oct 202416:53	–	cvelist
EUVD	EUVD-2024-18157	3 Oct 202520:07	–	euvd
NVD	CVE-2024-20442	2 Oct 202417:15	–	nvd
Positive Technologies	PT-2024-8626 · Cisco · Cisco Nexus Dashboard	2 Oct 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-20442	23 May 202507:48	–	redhatcve
Vulnrichment	CVE-2024-20442 Cisco Nexus Dashboard Unauthorized API Endpoints Vulnerability	2 Oct 202416:53	–	vulnrichment

NVD

Node

cisco nexus_dashboardRange<3.2(1e)

cisco nexus_dashboard_fabric_controllerRange12.0.0–12.2.2

[
  {
    "vendor": "Cisco",
    "product": "Cisco Nexus Dashboard",
    "versions": [
      {
        "version": "1.1(3e)",
        "status": "affected"
      },
      {
        "version": "1.1(3c)",
        "status": "affected"
      },
      {
        "version": "1.1(3d)",
        "status": "affected"
      },
      {
        "version": "1.1(0d)",
        "status": "affected"
      },
      {
        "version": "1.1(2i)",
        "status": "affected"
      },
      {
        "version": "2.0(1b)",
        "status": "affected"
      },
      {
        "version": "1.1(2h)",
        "status": "affected"
      },
      {
        "version": "1.1(0c)",
        "status": "affected"
      },
      {
        "version": "1.1(3f)",
        "status": "affected"
      },
      {
        "version": "2.1(1d)",
        "status": "affected"
      },
      {
        "version": "2.1(1e)",
        "status": "affected"
      },
      {
        "version": "2.0(2g)",
        "status": "affected"
      },
      {
        "version": "2.0(2h)",
        "status": "affected"
      },
      {
        "version": "2.1(2d)",
        "status": "affected"
      },
      {
        "version": "2.0(1d)",
        "status": "affected"
      },
      {
        "version": "2.2(1h)",
        "status": "affected"
      },
      {
        "version": "2.2(1e)",
        "status": "affected"
      },
      {
        "version": "2.2(2d)",
        "status": "affected"
      },
      {
        "version": "2.1(2f)",
        "status": "affected"
      },
      {
        "version": "2.3(1c)",
        "status": "affected"
      },
      {
        "version": "2.3(2b)",
        "status": "affected"
      },
      {
        "version": "2.3(2c)",
        "status": "affected"
      },
      {
        "version": "2.3(2d)",
        "status": "affected"
      },
      {
        "version": "2.3(2e)",
        "status": "affected"
      },
      {
        "version": "3.0(1f)",
        "status": "affected"
      },
      {
        "version": "3.0(1i)",
        "status": "affected"
      },
      {
        "version": "3.1(1k)",
        "status": "affected"
      },
      {
        "version": "3.1(1l)",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
sec	www.sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndhs-uaapi-Jh4V6zpN

07 Oct 2024 20:11Current

5.2Medium risk

Vulners AI Score5.2

CVSS 3.15.4

EPSS0.00329

SSVC

CWE-862