Cisco Cisco Digital Network Architecture Center (Dna Center)
33 CVEs affecting Cisco Cisco Digital Network Architecture Center (Dna Center). Latest disclosed: 2025-11-13. Critical: 4, High: 10.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-15386 | Critical | 9.8 | 2018-10-05 | A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and have direct una… |
CVE-2018-0448 | Critical | 9.8 | 2018-10-05 | A vulnerability in the identity management service of Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass… |
CVE-2021-1264 | Critical | 9.6 | 2021-01-20 | A vulnerability in the Command Runner tool of Cisco DNA Center could allow an authenticated, remote attacker to perform a command injection attack. The vulnera… |
CVE-2019-1848 | Critical | 9.3 | 2019-06-20 | A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, adjacent attacker to bypass authentication and access critic… |
CVE-2025-20341 | High | 8.8 | 2025-11-13 | A vulnerability in Cisco Catalyst Center Virtual Appliance could allow an authenticated, remote attacker to elevate privileges to Administrator on an affected… |
CVE-2021-1303 | High | 8.8 | 2021-01-20 | A vulnerability in the user management roles of Cisco DNA Center could allow an authenticated, remote attacker to execute unauthorized commands on an affected… |
CVE-2021-1257 | High | 8.8 | 2021-01-20 | A vulnerability in the web-based management interface of Cisco DNA Center Software could allow an unauthenticated, remote attacker to conduct a cross-site requ… |
CVE-2020-3281 | High | 8.8 | 2020-06-03 | A vulnerability in the audit logging component of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensiti… |
CVE-2023-20223 | High | 8.6 | 2023-09-27 | A vulnerability in Cisco DNA Center could allow an unauthenticated, remote attacker to read and modify data in a repository that belongs to an internal service… |
CVE-2023-20055 | High | 8.0 | 2023-03-23 | A vulnerability in the management API of Cisco DNA Center could allow an authenticated, remote attacker to elevate privileges in the context of the web-based m… |
CVE-2024-20350 | High | 7.5 | 2024-09-25 | A vulnerability in the SSH server of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an unauthenticated, remote attacker to impersonate a Cisco C… |
CVE-2020-3411 | High | 7.5 | 2020-08-17 | A vulnerability in Cisco DNA Center software could allow an unauthenticated remote attacker access to sensitive information on an affected system. The vulnerab… |
CVE-2021-1134 | High | 7.4 | 2021-06-29 | A vulnerability in the Cisco Identity Services Engine (ISE) integration feature of the Cisco DNA Center Software could allow an unauthenticated, remote attacke… |
CVE-2025-20210 | High | 7.3 | 2025-05-07 | A vulnerability in the management API of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an unauthenticated, remote attacker to read and modify t… |
CVE-2021-1265 | Medium | 6.5 | 2021-01-20 | A vulnerability in the configuration archive functionality of Cisco DNA Center could allow any privilege-level authenticated, remote attacker to obtain the ful… |
CVE-2020-3391 | Medium | 6.5 | 2020-07-02 | A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensitive information in clear text. T… |
CVE-2019-1841 | Medium | 6.5 | 2019-04-18 | A vulnerability in the Software Image Management feature of Cisco DNA Center could allow an authenticated, remote attacker to access to internal services witho… |
CVE-2025-20349 | Medium | 6.3 | 2025-11-13 | A vulnerability in the REST API of Cisco Catalyst Center could allow an authenticated, remote attacker to execute arbitrary commands in a restricted container… |
CVE-2025-20353 | Medium | 6.1 | 2025-11-13 | A vulnerability in the web-based management interface of Cisco Catalyst Center could allow an unauthenticated, remote attacker to conduct a cross-site scriptin… |
CVE-2020-3466 | Medium | 6.1 | 2020-08-26 | Multiple vulnerabilities in the web-based management interface of Cisco DNA Center software could allow an unauthenticated, remote attacker to conduct a cross-… |