CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-20163

A vulnerability in the SSH implementation of Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an unauthenticated, remote attacker to impersonate Cisco NDFC-managed devices. This vulnerability is due to insufficient SSH host key validation. An attacker could exploit this vulnerability by performing a machine-in-the-middle attack on SSH connections to Cisco NDFC-managed devices, which could allow an attacker to intercept this traffic. A successful exploit could allow the attacker to impersonate a managed device and capture user credentials.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.3%

CVSS Severity

CVSS v3 Score 8.7

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-shkv-snQJtjrp

Products affected by CVE-2025-20163

Cisco » Nexus Dashboard » Version: N/A

cpe:2.3:a:cisco:nexus_dashboard:-
Cisco » Nexus Dashboard » Version: 1.1

cpe:2.3:a:cisco:nexus_dashboard:1.1
Cisco » Nexus Dashboard » Version: 2.0

cpe:2.3:a:cisco:nexus_dashboard:2.0
Cisco » Nexus Dashboard » Version: 2.0.1

cpe:2.3:a:cisco:nexus_dashboard:2.0.1
Cisco » Nexus Dashboard » Version: 2.0.2

cpe:2.3:a:cisco:nexus_dashboard:2.0.2
Cisco » Nexus Dashboard » Version: 2.1

cpe:2.3:a:cisco:nexus_dashboard:2.1
Cisco » Nexus Dashboard » Version: 2.1.1d

cpe:2.3:a:cisco:nexus_dashboard:2.1.1d
Cisco » Nexus Dashboard » Version: 2.1.1e

cpe:2.3:a:cisco:nexus_dashboard:2.1.1e
Cisco » Nexus Dashboard » Version: 2.1.2

cpe:2.3:a:cisco:nexus_dashboard:2.1.2
Cisco » Nexus Dashboard » Version: 2.1.2d

cpe:2.3:a:cisco:nexus_dashboard:2.1.2d
Cisco » Nexus Dashboard » Version: 2.1.2f

cpe:2.3:a:cisco:nexus_dashboard:2.1.2f
Cisco » Nexus Dashboard » Version: 2.2

cpe:2.3:a:cisco:nexus_dashboard:2.2
Cisco » Nexus Dashboard » Version: 2.2(1e)

cpe:2.3:a:cisco:nexus_dashboard:2.2(1e)
Cisco » Nexus Dashboard » Version: 2.2(1h)

cpe:2.3:a:cisco:nexus_dashboard:2.2(1h)
Cisco » Nexus Dashboard » Version: 2.2(2d)

cpe:2.3:a:cisco:nexus_dashboard:2.2(2d)
Cisco » Nexus Dashboard » Version: 2.3(1c)

cpe:2.3:a:cisco:nexus_dashboard:2.3(1c)
Cisco » Nexus Dashboard » Version: 2.3(2b)

cpe:2.3:a:cisco:nexus_dashboard:2.3(2b)
Cisco » Nexus Dashboard » Version: 2.3(2c)

cpe:2.3:a:cisco:nexus_dashboard:2.3(2c)
Cisco » Nexus Dashboard » Version: 2.3(2d)

cpe:2.3:a:cisco:nexus_dashboard:2.3(2d)
Cisco » Nexus Dashboard » Version: 3.0(1f)

cpe:2.3:a:cisco:nexus_dashboard:3.0(1f)
Cisco » Nexus Dashboard » Version: 3.0(1i)

cpe:2.3:a:cisco:nexus_dashboard:3.0(1i)
Cisco » Nexus Dashboard » Version: 3.1(1f)

cpe:2.3:a:cisco:nexus_dashboard:3.1(1f)
Cisco » Nexus Dashboard » Version: 3.1(1k)

cpe:2.3:a:cisco:nexus_dashboard:3.1(1k)
Cisco » Nexus Dashboard » Version: 3.2(1e)

cpe:2.3:a:cisco:nexus_dashboard:3.2(1e)
Cisco » Nexus Dashboard » Version: 3.2(1i)

cpe:2.3:a:cisco:nexus_dashboard:3.2(1i)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-20163

Products

Pricing

Contact Us