Lucene search
K

13 matches found

NCSC
NCSC
added 2026/04/03 8:20 a.m.7 views

Vulnerabilities fixed in Cisco Nexus Dashboard and Nexus Dashboard Insights

Cisco has fixed vulnerabilities in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights. The first vulnerability involves incorrect input validation of specific HTTP requests in Cisco Nexus Dashboard and Nexus Dashboard Insights. This allows unauthenticated remote attackers to perform...

6.5CVSS6.4AI score0.00489EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/01 6:36 p.m.2 views

EUVD-2026-17957

A vulnerability in the Metadata update feature of Cisco Nexus Dashboard Insights could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to insufficient validation of the metadata update file. An attacker could exploit this...

4.9CVSS6AI score0.00489EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/01 6:36 p.m.5 views

EUVD-2026-17933

A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthenticated, remote attacker to conduct a server-side request forgery SSRF attack through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attack...

6.1CVSS6.2AI score0.00242EPSS
Exploits0References2
CVE
CVE
added 2026/04/01 4:29 p.m.48 views

CVE-2026-20174

Cisco Nexus Dashboard Insights metadata update feature is vulnerable to arbitrary file write. The issue arises from insufficient validation of the metadata update file, allowing an authenticated attacker with admin credentials to craft a metadata update file and upload it to an affected device, p...

4.9CVSS6AI score0.00489EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2026/04/01 4:0 p.m.13 views

Cisco Nexus Dashboard and Nexus Dashboard Insights Server-Side Request Forgery Vulnerability

A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthenticated, remote attacker to conduct a server-side request forgery SSRF attack through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attack...

6.1CVSS6.2AI score0.00242EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/01 12:0 a.m.5 views

Cisco Nexus Dashboard Insights 路径遍历漏洞

Cisco Nexus Dashboard Insights is a data center network operation analysis and fault diagnosis platform developed by the American company Cisco. Cisco Nexus Dashboard Insights has a path traversal vulnerability, which stems from insufficient validation of metadata update files. This vulnerability...

4.9CVSS5.9AI score0.00489EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.3 views

PT-2026-29564

A vulnerability in the Metadata update feature of Cisco Nexus Dashboard Insights could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to insufficient validation of the metadata update file. An attacker could exploit this...

4.9CVSS6AI score0.00489EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.5 views

PT-2026-29549

A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthenticated, remote attacker to conduct a server-side request forgery SSRF attack through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attack...

6.1CVSS6.2AI score0.00242EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/01 12:0 a.m.5 views

Cisco Nexus Dashboard和Cisco Nexus Dashboard Insights 代码问题漏洞

Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights are products of Cisco, a US-based company. Cisco Nexus Dashboard is a single console that simplifies the operation and management of data center networks. Cisco Nexus Dashboard Insights is a platform for operational analysis and fault...

6.1CVSS5.8AI score0.00242EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/25 12:0 a.m.5 views

The vulnerability of the log-viewing function in the web interface for managing analytics and automation of cloud computing in Cisco Nexus Data Center Dashboard Insights allows a malicious actor to disclose protected information.

The vulnerability of the log-viewing function in the web interface for managing analytics and automation of cloud-based data center systems from Cisco Nexus Dashboard Insights relates to the disclosure of information through registration files. Exploiting this vulnerability allows a malicious act...

8.6CVSS5.4AI score0.00277EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/10/02 5:15 p.m.4 views

CVE-2024-20491

A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker with access to a tech support file to view sensitive information. This vulnerability exists because remote controller credentials are recorded in an internal log that is stored in the tech support file...

8.6CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/10/02 5:15 p.m.23 views

CVE-2024-20491

A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker with access to a tech support file to view sensitive information. This vulnerability exists because remote controller credentials are recorded in an internal log that is stored in the tech support file...

8.6CVSS0.00277EPSS
Exploits0References1
CVE
CVE
added 2024/10/02 4:55 p.m.49 views

CVE-2024-20491

Cisco Nexus Dashboard Insights is affected by a vulnerability in its logging function that can disclose remote controller credentials. The issue arises because credentials are recorded in internal logs stored in tech support files, which an attacker can access to view admin credentials in clear t...

8.6CVSS6.5AI score0.00277EPSS
Exploits0References1Affected Software3
Rows per page
Query Builder