Cisco Cisco Digital Network Architecture Center (Dna Center)

33 CVEs affecting Cisco Cisco Digital Network Architecture Center (Dna Center). Latest disclosed: 2025-11-13. Critical: 4, High: 10.

Top CVEs affecting Cisco Cisco Digital Network Architecture Center (Dna Center)
CVESeverityScorePublishedSummary
CVE-2018-15386Critical9.82018-10-05A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and have direct una…
CVE-2018-0448Critical9.82018-10-05A vulnerability in the identity management service of Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass…
CVE-2021-1264Critical9.62021-01-20A vulnerability in the Command Runner tool of Cisco DNA Center could allow an authenticated, remote attacker to perform a command injection attack. The vulnera…
CVE-2019-1848Critical9.32019-06-20A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, adjacent attacker to bypass authentication and access critic…
CVE-2025-20341High8.82025-11-13A vulnerability in Cisco Catalyst Center Virtual Appliance could allow an authenticated, remote attacker to elevate privileges to Administrator on an affected…
CVE-2021-1303High8.82021-01-20A vulnerability in the user management roles of Cisco DNA Center could allow an authenticated, remote attacker to execute unauthorized commands on an affected…
CVE-2021-1257High8.82021-01-20A vulnerability in the web-based management interface of Cisco DNA Center Software could allow an unauthenticated, remote attacker to conduct a cross-site requ…
CVE-2020-3281High8.82020-06-03A vulnerability in the audit logging component of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensiti…
CVE-2023-20223High8.62023-09-27A vulnerability in Cisco DNA Center could allow an unauthenticated, remote attacker to read and modify data in a repository that belongs to an internal service…
CVE-2023-20055High8.02023-03-23A vulnerability in the management API of Cisco DNA Center could allow an authenticated, remote attacker to elevate privileges in the context of the web-based m…
CVE-2024-20350High7.52024-09-25A vulnerability in the SSH server of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an unauthenticated, remote attacker to impersonate a Cisco C…
CVE-2020-3411High7.52020-08-17A vulnerability in Cisco DNA Center software could allow an unauthenticated remote attacker access to sensitive information on an affected system. The vulnerab…
CVE-2021-1134High7.42021-06-29A vulnerability in the Cisco Identity Services Engine (ISE) integration feature of the Cisco DNA Center Software could allow an unauthenticated, remote attacke…
CVE-2025-20210High7.32025-05-07A vulnerability in the management API of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an unauthenticated, remote attacker to read and modify t…
CVE-2021-1265Medium6.52021-01-20A vulnerability in the configuration archive functionality of Cisco DNA Center could allow any privilege-level authenticated, remote attacker to obtain the ful…
CVE-2020-3391Medium6.52020-07-02A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensitive information in clear text. T…
CVE-2019-1841Medium6.52019-04-18A vulnerability in the Software Image Management feature of Cisco DNA Center could allow an authenticated, remote attacker to access to internal services witho…
CVE-2025-20349Medium6.32025-11-13A vulnerability in the REST API of Cisco Catalyst Center could allow an authenticated, remote attacker to execute arbitrary commands in a restricted container…
CVE-2025-20353Medium6.12025-11-13A vulnerability in the web-based management interface of Cisco Catalyst Center could allow an unauthenticated, remote attacker to conduct a cross-site scriptin…
CVE-2020-3466Medium6.12020-08-26Multiple vulnerabilities in the web-based management interface of Cisco DNA Center software could allow an unauthenticated, remote attacker to conduct a cross-…