13 matches found
Vulnerabilities fixed in Cisco Nexus Dashboard and Nexus Dashboard Insights
Cisco has fixed vulnerabilities in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights. The first vulnerability involves incorrect input validation of specific HTTP requests in Cisco Nexus Dashboard and Nexus Dashboard Insights. This allows unauthenticated remote attackers to perform...
EUVD-2026-17957
A vulnerability in the Metadata update feature of Cisco Nexus Dashboard Insights could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to insufficient validation of the metadata update file. An attacker could exploit this...
EUVD-2026-17933
A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthenticated, remote attacker to conduct a server-side request forgery SSRF attack through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attack...
CVE-2026-20174
Cisco Nexus Dashboard Insights metadata update feature is vulnerable to arbitrary file write. The issue arises from insufficient validation of the metadata update file, allowing an authenticated attacker with admin credentials to craft a metadata update file and upload it to an affected device, p...
Cisco Nexus Dashboard and Nexus Dashboard Insights Server-Side Request Forgery Vulnerability
A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthenticated, remote attacker to conduct a server-side request forgery SSRF attack through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attack...
Cisco Nexus Dashboard Insights 路径遍历漏洞
Cisco Nexus Dashboard Insights is a data center network operation analysis and fault diagnosis platform developed by the American company Cisco. Cisco Nexus Dashboard Insights has a path traversal vulnerability, which stems from insufficient validation of metadata update files. This vulnerability...
PT-2026-29564
A vulnerability in the Metadata update feature of Cisco Nexus Dashboard Insights could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to insufficient validation of the metadata update file. An attacker could exploit this...
PT-2026-29549
A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthenticated, remote attacker to conduct a server-side request forgery SSRF attack through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attack...
Cisco Nexus Dashboard和Cisco Nexus Dashboard Insights 代码问题漏洞
Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights are products of Cisco, a US-based company. Cisco Nexus Dashboard is a single console that simplifies the operation and management of data center networks. Cisco Nexus Dashboard Insights is a platform for operational analysis and fault...
The vulnerability of the log-viewing function in the web interface for managing analytics and automation of cloud computing in Cisco Nexus Data Center Dashboard Insights allows a malicious actor to disclose protected information.
The vulnerability of the log-viewing function in the web interface for managing analytics and automation of cloud-based data center systems from Cisco Nexus Dashboard Insights relates to the disclosure of information through registration files. Exploiting this vulnerability allows a malicious act...
CVE-2024-20491
A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker with access to a tech support file to view sensitive information. This vulnerability exists because remote controller credentials are recorded in an internal log that is stored in the tech support file...
CVE-2024-20491
A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker with access to a tech support file to view sensitive information. This vulnerability exists because remote controller credentials are recorded in an internal log that is stored in the tech support file...
CVE-2024-20491
Cisco Nexus Dashboard Insights is affected by a vulnerability in its logging function that can disclose remote controller credentials. The issue arises because credentials are recorded in internal logs stored in tech support files, which an attacker can access to view admin credentials in clear t...