Auth bypass in Cisco Catalyst_center
CVE-2020-3411
A vulnerability in Cisco DNA Center software could allow an unauthenticated remote attacker access to sensitive information on an affected system. The vulnerability is due to improper handling of authentication tokens by the affected softw…
Vulnerability class: Information Disclosure
EPSS: 0.022 (80.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.
Affected products
Weakness classification (CWE)
References
- psirt@cisco.com (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
Frequently asked questions
- What is CVE-2020-3411?
- CVE-2020-3411 is a high-severity vulnerability in Cisco Catalyst_center, classified under Information Disclosure. CVSS score: 7.5/10. Published 2020-08-17.
- How severe is CVE-2020-3411?
- High severity. CVSS v3 base score is 7.5 out of 10.