threat
engine
.sh
Back
·
··:··
Home
/
Product
/
cisco nexus dashboard
Product
cisco nexus dashboard
24 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-20348
< 4.1\(1g\)
A vulnerability in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller (NDFC) could allow
5.0
MEDIUM
CVE-2025-20347
< 4.1\(1g\)
A vulnerability in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller (NDFC) could allow
5.4
MEDIUM
CVE-2025-20344
< 4.1\(1g\)
A vulnerability in the backup restore functionality of Cisco Nexus Dashboard could allow an authenticated, remote attacker to cond
6.5
MEDIUM
CVE-2025-20163
< 3.2\(2f\)
A vulnerability in the SSH implementation of Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an unauthenticated, remote
8.7
HIGH
CVE-2025-20150
< 3.2\(2f\)
A vulnerability in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to enumerate LDAP user accounts. This
5.3
MEDIUM
CVE-2024-20477
< 3.2\(1e\)
A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to upl
5.4
MEDIUM
CVE-2024-20442
< 3.2\(1e\)
A vulnerability in the REST API endpoints of Cisco Nexus Dashboard could allow an authenticated, low-privileged, remote attacker t
5.4
MEDIUM
CVE-2024-20441
< 3.2\(1e\)
A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to lea
5.7
MEDIUM
CVE-2024-20438
< 3.2\(1e\)
A vulnerability in the REST API endpoints of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to read or w
6.3
MEDIUM
CVE-2024-20283
< 3.1(1k)
A vulnerability in Cisco Nexus Dashboard could allow an authenticated, remote attacker to learn cluster deployment information on
4.3
MEDIUM
CVE-2024-20282
< 3.1(1k)
A vulnerability in Cisco Nexus Dashboard could allow an authenticated, local attacker with valid rescue-user credentials to elevat
6.0
MEDIUM
CVE-2024-20281
< 3.1(1k)
A vulnerability in the web-based management interface of Cisco Nexus Dashboard and Cisco Nexus Dashboard hosted services could all
7.5
HIGH
CVE-2023-20053
< 2.3\(1c\)
A vulnerability in the web-based management interface of Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to
6.1
MEDIUM
CVE-2023-20014
< 2.3\(1c\)
A vulnerability in the DNS functionality of Cisco Nexus Dashboard Software could allow an unauthenticated, remote attacker to caus
7.5
HIGH
CVE-2022-20913
>= 2.0 and < 2.2\(1e\)
A vulnerability in Cisco Nexus Dashboard could allow an authenticated, remote attacker to write arbitrary files on an affected dev
4.9
MEDIUM
CVE-2022-20909
>= 2.0 and < 2.2\(1e\)
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local attacker to elevate privileges on an affecte
6.0
MEDIUM
CVE-2022-20908
>= 2.0 and < 2.2\(1e\)
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local attacker to elevate privileges on an affecte
6.0
MEDIUM
CVE-2022-20907
>= 2.0 and < 2.2\(1e\)
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local attacker to elevate privileges on an affecte
6.0
MEDIUM
CVE-2022-20906
>= 2.0 and < 2.2\(1e\)
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local attacker to elevate privileges on an affecte
6.0
MEDIUM
CVE-2022-20861
>= 1.1 and < 2.2\(1e\)
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, r
9.8
CRITICAL
CVE-2022-20860
>= 1.1 and < 2.2\(1h\)
A vulnerability in the SSL/TLS implementation of Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to alter co
7.4
HIGH
CVE-2022-20858
>= 2.0 and < 2.2\(1e\)
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, r
9.8
CRITICAL
CVE-2022-20857
>= 1.0 and < 2.2\(1e\)
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, r
9.8
CRITICAL
CVE-2021-44228
< 2.1.2
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration
10.0
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin