CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-3391 – Cisco Digital Network Architecture Center Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-3391
02 Jul 2020 — A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensitive information in clear text. The vulnerability is due to insecure storage of certain unencrypted credentials on an affected device. An attacker could exploit this vulnerability by viewing the network device configuration and obtaining credentials that they may not normally have access to. A successful exploit could allow the attacker to use those credentials to discover and manage... • https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-info-disc-6xsCyDYy • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-522: Insufficiently Protected Credentials •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-3281 – Cisco Digital Network Architecture Center Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-3281
03 Jun 2020 — A vulnerability in the audit logging component of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensitive information in clear text. The vulnerability is due to the storage of certain unencrypted credentials. An attacker could exploit this vulnerability by accessing the audit logs and obtaining credentials that they may not normally have access to. A successful exploit could allow the attacker to use those credentials to discover and manage network dev... • https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-audit-log-59RBdwb6 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-1848 – Cisco DNA Center Authentication Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2019-1848
20 Jun 2019 — A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, adjacent attacker to bypass authentication and access critical internal services. The vulnerability is due to insufficient access restriction to ports necessary for system operation. An attacker could exploit this vulnerability by connecting an unauthorized network device to the subnet designated for cluster services. A successful exploit could allow an attacker to reach internal services that are not hardened... • http://www.securityfocus.com/bid/108837 • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 0CVE-2019-1675 – Cisco Aironet Active Sensor Static Credentials Vulnerability
https://notcve.org/view.php?id=CVE-2019-1675
07 Feb 2019 — A vulnerability in the default configuration of the Cisco Aironet Active Sensor could allow an unauthenticated, remote attacker to restart the sensor. The vulnerability is due to a default local account with a static password. The account has privileges only to reboot the device. An attacker could exploit this vulnerability by guessing the account name and password to access the CLI. A successful exploit could allow the attacker to reboot the device repeatedly, creating a denial of service (DoS) condition. • http://www.securityfocus.com/bid/106944 • CWE-798: Use of Hard-coded Credentials •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-0448 – Cisco Digital Network Architecture Center Authentication Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2018-0448
05 Oct 2018 — A vulnerability in the identity management service of Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and take complete control of identity management functions. The vulnerability is due to insufficient security restrictions for critical management functions. An attacker could exploit this vulnerability by sending a valid identity management request to the affected system. An exploit could allow the attacker to view and make unauthoriz... • http://www.securityfocus.com/bid/105502 • CWE-326: Inadequate Encryption Strength •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2018-15386 – Cisco Digital Network Architecture Center Unauthenticated Access Vulnerability
https://notcve.org/view.php?id=CVE-2018-15386
05 Oct 2018 — A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and have direct unauthorized access to critical management functions. The vulnerability is due to an insecure default configuration of the affected system. An attacker could exploit this vulnerability by directly connecting to the exposed services. An exploit could allow the attacker to retrieve and modify critical system files. Una vulnerabilidad en Cisco Digital Netwo... • http://www.securityfocus.com/bid/105504 • CWE-16: Configuration •
CVSS: 7.8EPSS: 6%CPEs: 127EXPL: 0CVE-2018-5390 – Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service
https://notcve.org/view.php?id=CVE-2018-5390
06 Aug 2018 — Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service. El kernel de Linux en versiones 4.9 y siguientes pueden forzarse a realizar llamadas muy caras a tcp_collapse_ofo_queue() y tcp_prune_ofo_queue() para cada paquete entrante, lo que puede conducir a una denegación de servicio. A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP pac... • http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt • CWE-400: Uncontrolled Resource Consumption •
CVSS: 10.0EPSS: 2%CPEs: 1EXPL: 0CVE-2018-0222
https://notcve.org/view.php?id=CVE-2018-0222
17 May 2018 — A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to log in to an affected system by using an administrative account that has default, static user credentials. The vulnerability is due to the presence of undocumented, static user credentials for the default administrative account for the affected software. An attacker could exploit this vulnerability by using the account to log in to an affected system. A successful exploit could allow the att... • http://www.securityfocus.com/bid/104193 • CWE-798: Use of Hard-coded Credentials •
CVSS: 10.0EPSS: 13%CPEs: 1EXPL: 0CVE-2018-0268
https://notcve.org/view.php?id=CVE-2018-0268
17 May 2018 — A vulnerability in the container management subsystem of Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and gain elevated privileges. This vulnerability is due to an insecure default configuration of the Kubernetes container management subsystem within DNA Center. An attacker who has the ability to access the Kubernetes service port could execute commands with elevated privileges within provisioned containers. A successful exploit cou... • http://www.securityfocus.com/bid/104192 • CWE-358: Improperly Implemented Security Check for Standard •
CVSS: 9.8EPSS: 5%CPEs: 1EXPL: 0CVE-2018-0271
https://notcve.org/view.php?id=CVE-2018-0271
17 May 2018 — A vulnerability in the API gateway of the Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and access critical services. The vulnerability is due to a failure to normalize URLs prior to servicing requests. An attacker could exploit this vulnerability by submitting a crafted URL designed to exploit the issue. A successful exploit could allow the attacker to gain unauthenticated access to critical services, resulting in elevated privilege... • http://www.securityfocus.com/bid/104191 • CWE-287: Improper Authentication •