Skip to main content

Cisco EUVDEUVD-2026-17933

| CVE-2026-20041 MEDIUM
Server-Side Request Forgery (SSRF) (CWE-918)
2026-04-01 cisco GHSA-24qq-7528-p6pc
6.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.1 MEDIUM
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

3
EUVD ID Assigned
Apr 01, 2026 - 17:30 euvd
EUVD-2026-17933
Analysis Generated
Apr 01, 2026 - 17:30 vuln.today
CVE Published
Apr 01, 2026 - 16:27 nvd
MEDIUM 6.1

DescriptionCVE.org

A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthenticated, remote attacker to conduct a server-side request forgery (SSRF) attack through an affected device.

This vulnerability is due to improper input validation for specific HTTP requests. An attacker could exploit this vulnerability by persuading an authenticated user of the device management interface to click a crafted link. A successful exploit could allow the attacker to send arbitrary network requests that are sourced from the affected device to an attacker-controlled server. The attacker could then execute arbitrary script code in the context of the affected interface or access sensitive browser-based information.

AnalysisAI

Server-side request forgery in Cisco Nexus Dashboard and Nexus Dashboard Insights allows unauthenticated remote attackers to conduct SSRF attacks by tricking authenticated users into clicking malicious links, enabling arbitrary network requests from the affected device and potential execution of arbitrary script code or access to sensitive browser data. CVSS 6.1 with no public exploit or active exploitation confirmed at time of analysis.

Technical ContextAI

This vulnerability exploits improper input validation in HTTP request handling within Cisco Nexus Dashboard and Nexus Dashboard Insights (CWE-918: Server-Side Request Forgery). The affected products fail to adequately validate user-supplied input in specific HTTP requests, allowing attackers to inject crafted parameters that cause the server to make unintended requests to attacker-controlled endpoints. The SSRF attack vector operates at the network layer (AV:N) with low complexity (AC:L), requiring no prior authentication (PR:N) but necessitating user interaction (UI:R) such as clicking a malicious link. The resulting requests are sourced from the trusted network context of the Nexus Dashboard, bypassing network-based access controls and potentially reaching internal systems not directly exposed to the attacker.

RemediationAI

Customers should apply the security patch released by Cisco for both Nexus Dashboard and Nexus Dashboard Insights. Exact patched version numbers must be obtained from the official Cisco Security Advisory at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nd-ssrf-NAen4O7r. As an interim mitigation pending patch application, restrict access to the Nexus Dashboard management interface to trusted networks and implement strict input filtering or web application firewall rules to block maliciously crafted HTTP requests. Additionally, conduct user awareness training to reduce the likelihood of authenticated users clicking suspicious links that might trigger SSRF exploitation.

Share

EUVD-2026-17933 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy