The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Cisco Data Center Network Manager

Cisco Data Center Network Manager: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco Data Center Network Manager, in order to run JavaScript code in the context of the web site...
cisco-sa-20200219-dcnm-xss, CSCvs04009, CVE-2020-3113, VIGILANCE-VUL-31637
Cisco Data Center Network Manager: privilege escalation via REST API
An attacker can bypass restrictions via REST API of Cisco Data Center Network Manager, in order to escalate his privileges...
CERTFR-2020-AVI-100, cisco-sa-20200219-dcnm-priv-esc, CSCvs04007, CVE-2020-3112, VIGILANCE-VUL-31636
Cisco Data Center Network Manager: Cross Site Request Forgery
An attacker can trigger a Cross Site Request Forgery of Cisco Data Center Network Manager, in order to force the victim to perform operations...
CERTFR-2020-AVI-100, cisco-sa-20200219-dcnm-csrf, CSCvs04006, CVE-2020-3114, VIGILANCE-VUL-31635
Cisco Data Center Network Manager: privilege escalation via JBoss EAP
An attacker can bypass restrictions via JBoss EAP of Cisco Data Center Network Manager, in order to escalate his privileges...
CERTFR-2020-AVI-001, cisco-sa-20200102-dcnm-unauth-access, CSCvs00139, CVE-2019-15999, VIGILANCE-VUL-31256
Cisco Data Center Network Manager: external XML entity injection via SOAP API
An attacker can transmit malicious XML data via SOAP API to Cisco Data Center Network Manager, in order to read a file, scan sites, or trigger a denial of service...
CERTFR-2020-AVI-001, cisco-sa-20200102-dcnm-xml-ext-entity, CSCvr79188, CSCvr88730, CSCvr88737, CVE-2019-15983, VIGILANCE-VUL-31257, ZDI-20-114, ZDI-20-117, ZDI-20-119, ZDI-20-120
Cisco Data Center Network Manager: SQL injection via REST/SOAP
An attacker can use a SQL injection via REST/SOAP of Cisco Data Center Network Manager, in order to read or alter data...
CERTFR-2020-AVI-001, cisco-sa-20200102-dcnm-sql-inject, CSCvq98723, CSCvq98730, CSCvq98736, CSCvq98748, CSCvr01692, CSCvr01694, CSCvr01701, CSCvr07317, CSCvr14598, CSCvr17974, CSCvr23573, CSCvr23728, CSCvr23733, CSCvr23770, CSCvr23864, CSCvr23865, CSCvr32014, CSCvr34624, CSCvr46544, CSCvr46547, CSCvr79116, CSCvr79127, CSCvs16306, CVE-2019-15984, CVE-2019-15985, VIGILANCE-VUL-31255, ZDI-20-016, ZDI-20-017, ZDI-20-018, ZDI-20-019, ZDI-20-020, ZDI-20-021, ZDI-20-022, ZDI-20-023, ZDI-20-024, ZDI-20-025, ZDI-20-026, ZDI-20-027, ZDI-20-028, ZDI-20-029, ZDI-20-030, ZDI-20-031, ZDI-20-032, ZDI-20-033, ZDI-20-034, ZDI-20-035, ZDI-20-036, ZDI-20-037, ZDI-20-038, ZDI-20-039, ZDI-20-040, ZDI-20-041, ZDI-20-042, ZDI-20-043, ZDI-20-044, ZDI-20-045, ZDI-20-046, ZDI-20-047, ZDI-20-048, ZDI-20-049, ZDI-20-050, ZDI-20-051, ZDI-20-052, ZDI-20-053, ZDI-20-054, ZDI-20-055, ZDI-20-056, ZDI-20-057, ZDI-20-058, ZDI-20-059, ZDI-20-060, ZDI-20-061, ZDI-20-062, ZDI-20-063, ZDI-20-064, ZDI-20-065, ZDI-20-066, ZDI-20-067, ZDI-20-068, ZDI-20-069, ZDI-20-070, ZDI-20-071, ZDI-20-072, ZDI-20-073, ZDI-20-074, ZDI-20-075, ZDI-20-076, ZDI-20-077, ZDI-20-078, ZDI-20-079, ZDI-20-080, ZDI-20-081, ZDI-20-082, ZDI-20-083, ZDI-20-084, ZDI-20-085, ZDI-20-086, ZDI-20-087, ZDI-20-088, ZDI-20-089, ZDI-20-090, ZDI-20-091, ZDI-20-092, ZDI-20-093, ZDI-20-094, ZDI-20-095, ZDI-20-096, ZDI-20-097, ZDI-20-098, ZDI-20-099, ZDI-20-104, ZDI-20-105, ZDI-20-106, ZDI-20-107, ZDI-20-108, ZDI-20-109, ZDI-20-110, ZDI-20-111, ZDI-20-112, ZDI-20-113, ZDI-20-115, ZDI-20-116, ZDI-20-121
Cisco Data Center Network Manager: directory traversal via REST/SOAP
An attacker can traverse directories via REST/SOAP of Cisco Data Center Network Manager, in order to read/write a file outside the service root path...
CERTFR-2020-AVI-001, cisco-sa-20200102-dcnm-path-trav, CSCvq85957, CSCvq85972, CSCvq85998, CSCvq89422, CSCvq89834, CSCvq89841, CSCvq89878, CSCvq89895, CSCvr05463, CSCvr17970, CSCvr44896, CSCvr46508, CSCvr79240, CSCvs16318, CSCvs16341, CSCvs16350, CVE-2019-15980, CVE-2019-15981, CVE-2019-15982, VIGILANCE-VUL-31254, ZDI-20-004, ZDI-20-005, ZDI-20-006, ZDI-20-007, ZDI-20-009, ZDI-20-010, ZDI-20-011, ZDI-20-014, ZDI-20-015, ZDI-20-101, ZDI-20-103, ZDI-20-118
Cisco Data Center Network Manager: privilege escalation via Command Injection
An attacker can bypass restrictions via Command Injection of Cisco Data Center Network Manager, in order to escalate his privileges...
CERTFR-2020-AVI-001, cisco-sa-20200102-dcnm-comm-inject, CSCvr44798, CSCvr46507, CVE-2019-15978, CVE-2019-15979, VIGILANCE-VUL-31253, ZDI-20-100, ZDI-20-102
Cisco Data Center Network Manager: file upload via Web Management Interface
An attacker can upload a malicious file via Web Management Interface on Cisco Data Center Network Manager, in order for example to upload a Trojan...
CERTFR-2019-AVI-297, cisco-sa-20190626-dcnm-codex, CSCvo64647, CVE-2019-1620, VIGILANCE-VUL-29632
Cisco Data Center Network Manager: privilege escalation via Web Management Interface Session
An attacker can bypass restrictions via Web Management Interface of Cisco Data Center Network Manager, in order to escalate his privileges...
CERTFR-2019-AVI-297, cisco-sa-20190626-dcnm-bypass, CSCvo64641, CVE-2019-1619, VIGILANCE-VUL-29631
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco Data Center Network Manager: