Cisco Nexus Dashboard Fabric Controller — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Nexus Dashboard Fabric Controller, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2024-20432 — CVSS 9.9 (critical): A vulnerability in the REST API and web UI of Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an authenticated, low-privileged…
CVE-2024-20536 — CVSS 8.8 (high): A vulnerability in a REST API endpoint and web-based management interface of Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an…
CVE-2024-20449 — CVSS 8.8 (high): A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an authenticated, remote attacker with low privileges to…
CVE-2024-20281 — CVSS 7.5 (high): A vulnerability in the web-based management interface of Cisco Nexus Dashboard and Cisco Nexus Dashboard hosted services could allow an…
CVE-2024-20348 — CVSS 7.5 (high): A vulnerability in the Out-of-Band (OOB) Plug and Play (PnP) feature of Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an…
CVE-2024-20491 — CVSS 6.3 (medium): A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker with access to a tech support file to view…
CVE-2024-20438 — CVSS 6.3 (medium): A vulnerability in the REST API endpoints of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to read or write…
CVE-2024-20448 — CVSS 6.3 (medium): A vulnerability in the Cisco Nexus Dashboard Fabric Controller (NDFC) software, formerly Cisco Data Center Network Manager (DCNM), could…
CVE-2024-20490 — CVSS 6.3 (medium): A vulnerability in a logging function of Cisco Nexus Dashboard Fabric Controller (NDFC) and Cisco Nexus Dashboard Orchestrator (NDO) could…
CVE-2024-20441 — CVSS 5.7 (medium): A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to learn…
CVE-2024-20444 — CVSS 5.5 (medium): A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center Network Manager (DCNM), could allow an…
CVE-2024-20477 — CVSS 5.4 (medium): A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to upload or…
CVE-2024-20442 — CVSS 5.4 (medium): A vulnerability in the REST API endpoints of Cisco Nexus Dashboard could allow an authenticated, low-privileged, remote attacker to perform…