Vulnerabilities > Cisco > DNA Center > 1.3.3.9

DATE CVE VULNERABILITY TITLE RISK
2021-01-20 CVE-2021-1265 Unspecified vulnerability in Cisco DNA Center
A vulnerability in the configuration archive functionality of Cisco DNA Center could allow any privilege-level authenticated, remote attacker to obtain the full unmasked running configuration of managed devices.
network
low complexity
cisco
6.5
6.5
2021-01-20 CVE-2021-1257 Cross-Site Request Forgery (CSRF) vulnerability in multiple products
A vulnerability in the web-based management interface of Cisco DNA Center Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack to manipulate an authenticated user into executing malicious actions without their awareness or consent.
network
low complexity
cisco mcafee CWE-352
8.8
8.8
2021-01-13 CVE-2021-1130 Cross-site Scripting vulnerability in Cisco DNA Center
A vulnerability in the web-based management interface of Cisco DNA Center software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected device.
network
low complexity
cisco CWE-79
4.8
4.8