Severity by source
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Lifecycle Timeline
3DescriptionCVE.org
A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthenticated, remote attacker to conduct a server-side request forgery (SSRF) attack through an affected device.
This vulnerability is due to improper input validation for specific HTTP requests. An attacker could exploit this vulnerability by persuading an authenticated user of the device management interface to click a crafted link. A successful exploit could allow the attacker to send arbitrary network requests that are sourced from the affected device to an attacker-controlled server. The attacker could then execute arbitrary script code in the context of the affected interface or access sensitive browser-based information.
AnalysisAI
Server-side request forgery in Cisco Nexus Dashboard and Nexus Dashboard Insights allows unauthenticated remote attackers to conduct SSRF attacks by tricking authenticated users into clicking malicious links, enabling arbitrary network requests from the affected device and potential execution of arbitrary script code or access to sensitive browser data. CVSS 6.1 with no public exploit or active exploitation confirmed at time of analysis.
Technical ContextAI
This vulnerability exploits improper input validation in HTTP request handling within Cisco Nexus Dashboard and Nexus Dashboard Insights (CWE-918: Server-Side Request Forgery). The affected products fail to adequately validate user-supplied input in specific HTTP requests, allowing attackers to inject crafted parameters that cause the server to make unintended requests to attacker-controlled endpoints. The SSRF attack vector operates at the network layer (AV:N) with low complexity (AC:L), requiring no prior authentication (PR:N) but necessitating user interaction (UI:R) such as clicking a malicious link. The resulting requests are sourced from the trusted network context of the Nexus Dashboard, bypassing network-based access controls and potentially reaching internal systems not directly exposed to the attacker.
RemediationAI
Customers should apply the security patch released by Cisco for both Nexus Dashboard and Nexus Dashboard Insights. Exact patched version numbers must be obtained from the official Cisco Security Advisory at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nd-ssrf-NAen4O7r. As an interim mitigation pending patch application, restrict access to the Nexus Dashboard management interface to trusted networks and implement strict input filtering or web application firewall rules to block maliciously crafted HTTP requests. Additionally, conduct user awareness training to reduce the likelihood of authenticated users clicking suspicious links that might trigger SSRF exploitation.
Same weakness CWE-918 – Server-Side Request Forgery (SSRF)
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-17933
GHSA-24qq-7528-p6pc