2 matches found
Cisco Data Center Network Manager Command Injection (cisco-sa-devmgr-cmd-inj-Umc8RHNh)
According to its self-reported version, Cisco Data Center Network Manager is affected by a command injection vulnerability due to insufficient validation of user-supplied input. A remote, authenticated attacker can exploit this vulnerability by sending crafted arguments to a specific field within...
CVE-2020-3377
Cisco DCNM's Device Manager has a command-injection vulnerability due to insufficient input validation. An authenticated, remote attacker could trigger arbitrary commands with administrator privileges on the DCNM. The incident is documented across multiple sources (Cisco security advisory CISCO-S...