Skip to main content

Data Center Network Manager CVE-2020-3382

CRITICAL
Use of Hard-coded Credentials (CWE-798)
2020-07-31 psirt@cisco.com
9.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
9.8 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Jul 31, 2020 - 00:15 nvd
CRITICAL 9.8

DescriptionNVD

A vulnerability in the REST API of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. The vulnerability exists because different installations share a static encryption key. An attacker could exploit this vulnerability by using the static key to craft a valid session token. A successful exploit could allow the attacker to perform arbitrary actions through the REST API with administrative privileges.

AnalysisAI

A vulnerability in the REST API of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified as Use of Hard-coded Credentials (CWE-798), which allows attackers to gain access using credentials embedded in source code. A vulnerability in the REST API of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. The vulnerability exists because different installations share a static encryption key. An attacker could exploit this vulnerability by using the static key to craft a valid session token. A successful exploit could allow the attacker to perform arbitrary actions through the REST API with administrative privileges. Affected products include: Cisco Data Center Network Manager.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Remove hard-coded credentials, use environment variables or secrets management, rotate exposed credentials immediately.

CVE-2019-1620 CRITICAL POC
9.8 Jun 27

A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthe

CVE-2019-1619 CRITICAL POC
9.8 Jun 27

A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthe

CVE-2019-1622 MEDIUM POC
5.3 Jun 27

A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthe

CVE-2019-1621 HIGH POC
7.5 Jun 27

A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthe

CVE-2020-3376 CRITICAL
9.8 Jul 31

A vulnerability in the Device Manager application of Cisco Data Center Network Manager (DCNM) could allow an unauthentic

CVE-2017-12343 HIGH
8.8 Nov 30

Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote attacker to inject ar

CVE-2021-1247 HIGH
8.8 Jan 20

Multiple vulnerabilities in certain REST API endpoints of Cisco Data Center Network Manager (DCNM) could allow an authen

CVE-2021-1272 HIGH
8.8 Jan 20

A vulnerability in the session validation feature of Cisco Data Center Network Manager (DCNM) could allow an unauthentic

CVE-2020-3386 HIGH
8.8 Jul 31

A vulnerability in the REST API endpoint of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remot

CVE-2020-3383 HIGH
8.8 Jul 31

A vulnerability in the archive utility of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote

CVE-2020-3377 HIGH
8.8 Jul 31

A vulnerability in the Device Manager application of Cisco Data Center Network Manager (DCNM) could allow an authenticat

CVE-2020-3114 HIGH
8.8 Feb 19

A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthe

Share

CVE-2020-3382 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy