Vulnerability Description
Multiple vulnerabilities in the authentication mechanisms of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Data Center Network Manager | < 11.3\(1\) |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/156242/Cisco-Data-Center-Network-Manager-11ExploitThird Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
- http://packetstormsecurity.com/files/156242/Cisco-Data-Center-Network-Manager-11ExploitThird Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
FAQ
What is CVE-2019-15977?
CVE-2019-15977 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple vulnerabilities in the authentication mechanisms of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary act...
How severe is CVE-2019-15977?
CVE-2019-15977 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-15977?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Data Center Network Manager.