Vulnerabilities > CVE-2018-15386 - Unspecified vulnerability in Cisco Digital Network Architecture Center

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

cisco

critical

NVD

Published: 2018-10-05

Updated: 2020-08-13

Summary

A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and have direct unauthorized access to critical management functions. The vulnerability is due to an insecure default configuration of the affected system. An attacker could exploit this vulnerability by directly connecting to the exposed services. An exploit could allow the attacker to retrieve and modify critical system files.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Digital Network Architecture Center 1.1.2 Cisco Digital Network Architecture Center 1.1.3 Cisco Digital Network Architecture Center 1.1.1 Cisco Digital Network Architecture Center 1.1	4

Vulnerabilities > CVE-2018-15386 - Unspecified vulnerability in Cisco Digital Network Architecture Center

Summary

Vulnerable Configurations

Related news

References