Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Vulnerabilities fixed in Cisco Nexus Dashboard

🗓️ 04 Apr 2024 00:00:00Reported by NCSCType 
ncsc
 ncsc🔗 advisories.ncsc.nl👁 4 Views

Cisco fixed Nexus Dashboard vulnerabilities across Dashboard, Fabric Controller, and Orchestrator, addressing XSRF, data manipulation, and remote code execution.

Related
ReporterTitlePublishedViews
Family
BDU FSTEC		The vulnerability of the function in the out-of-band connection of the Cisco Nexus Dashboard Fabric Controller (NDFC) allows a hacker to read arbitrary files on the server.
4 Apr 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the network management tool and Cisco Nexus Dashboard Orchestrator’s policies (formerly known as Cisco Multi-Site Orchestrator) is related to deficiencies in access control. This allows a malicious actor to gain read, modify, or delete access to data.
29 May 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the Cisco Nexus Dashboard, a platform for analytics and automation of cloud computing data centers, stems from inadequate access control mechanisms. This allows attackers to elevate their privileges to the root level.
29 May 202400:00
bdu_fstec
BDU FSTEC		The vulnerability in the web interface for managing analytics and automation of cloud network data centers of Cisco Nexus Dashboard allows a attacker to perform a CSRF attack.
31 May 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the Cisco Nexus Dashboard, a platform for analytics and automation of cloud computing data centers, stems from deficiencies in access control. This allows unauthorized individuals to gain unauthorized access to protected information.
31 May 202400:00
bdu_fstec
Cisco		Cisco Nexus Dashboard Fabric Controller Plug and Play Arbitrary File Read Vulnerability
3 Apr 202416:00
cisco
Cisco		Cisco Nexus Dashboard and Nexus Dashboard Hosted Services Cross-Site Request Forgery Vulnerability
3 Apr 202416:00
cisco
Cisco		Cisco Nexus Dashboard Information Disclosure Vulnerability
3 Apr 202416:00
cisco
Cisco		Cisco Nexus Dashboard Orchestrator Unauthorized Policy Actions Vulnerability
3 Apr 202416:00
cisco
Cisco		Cisco Nexus Dashboard Privilege Escalation Vulnerability
3 Apr 202416:00
cisco
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
04 Apr 2024 00:00Current
7.7High risk
Vulners AI Score7.7
CVSS 3.17.5 - 8.8
EPSS0.00865
SSVC
Nexus DashboardFabric ControllerOrchestratorCross Site ForgeryData manipulationRemote code executionVulnerability fixes
4