CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-20913

A vulnerability in Cisco Nexus Dashboard could allow an authenticated, remote attacker to write arbitrary files on an affected device. This vulnerability is due to insufficient input validation in the web-based management interface of Cisco Nexus Dashboard. An attacker with Administrator credentials could exploit this vulnerability by uploading a crafted file. A successful exploit could allow the attacker to overwrite arbitrary files on an affected device.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.6%

CVSS Severity

CVSS v3 Score 4.9

References

Products affected by CVE-2022-20913

Cisco » Nexus Dashboard » Version: 2.0

cpe:2.3:a:cisco:nexus_dashboard:2.0
Cisco » Nexus Dashboard » Version: 2.0.1

cpe:2.3:a:cisco:nexus_dashboard:2.0.1
Cisco » Nexus Dashboard » Version: 2.0.2

cpe:2.3:a:cisco:nexus_dashboard:2.0.2
Cisco » Nexus Dashboard » Version: 2.1

cpe:2.3:a:cisco:nexus_dashboard:2.1
Cisco » Nexus Dashboard » Version: 2.1.1d

cpe:2.3:a:cisco:nexus_dashboard:2.1.1d
Cisco » Nexus Dashboard » Version: 2.1.1e

cpe:2.3:a:cisco:nexus_dashboard:2.1.1e
Cisco » Nexus Dashboard » Version: 2.1.2

cpe:2.3:a:cisco:nexus_dashboard:2.1.2
Cisco » Nexus Dashboard » Version: 2.1.2d

cpe:2.3:a:cisco:nexus_dashboard:2.1.2d
Cisco » Nexus Dashboard » Version: 2.1.2f

cpe:2.3:a:cisco:nexus_dashboard:2.1.2f
Cisco » Nexus Dashboard » Version: 2.2

cpe:2.3:a:cisco:nexus_dashboard:2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-20913

Products

Pricing

Contact Us