CVE-2019-15977 Cisco Data Center Network Manager Authentication Bypass Vulnerabilities

🗓️ 06 Jan 2020 07:45:59Reported by ciscoType

CVE-2019-15977 Cisco Data Center Network Manager Authentication Bypass Vulnerabilitie

Reporter	Title	Published	Views	Family All 24
0day.today	Cisco Data Center Network Manager 11.2.1 - (LanFabricImpl) Command Injection Exploit	6 Feb 202000:00	–	zdt
BDU FSTEC	The vulnerability in the web interface of the Cisco Data Center Network Manager (DCNM) system allows a perpetrator to perform arbitrary actions on the vulnerable device.	29 Jan 202000:00	–	bdu_fstec
Circl	CVE-2019-15977	6 Feb 202000:00	–	circl
Cisco	Cisco Data Center Network Manager Authentication Bypass Vulnerabilities	2 Jan 202016:00	–	cisco
Tenable Nessus	Cisco Data Center Network Manager < 11.3(1) Multiple Vulnerabilities	9 Jan 202000:00	–	nessus
Tenable Nessus	Cisco DCNM Authentication Bypass (CVE-2019-15977)	20 Jan 202000:00	–	nessus
CNVD	Cisco Data Center Network Manager Authentication Bypass Vulnerability	3 Jan 202000:00	–	cnvd
CVE	CVE-2019-15977	6 Jan 202007:45	–	cve
Exploit DB	Cisco Data Center Network Manager 11.2.1 - 'LanFabricImpl' Command Injection	6 Feb 202000:00	–	exploitdb
exploitpack	Cisco Data Center Network Manager 11.2.1 - LanFabricImpl Command Injection	6 Feb 202000:00	–	exploitpack

[
  {
    "product": "Cisco Data Center Network Manager",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "n/a",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200102-dcnm-auth-bypass
packetstormsecurity	www.packetstormsecurity.com/files/156242/Cisco-Data-Center-Network-Manager-11.2.1-Command-Injection.html

06 Feb 2020 19:06Current

8.2High risk

Vulners AI Score8.2

CVSS 39.8

EPSS0.45999

CWE-798