Cisco Cisco Nexus Dashboard
22 CVEs affecting Cisco Cisco Nexus Dashboard. Latest disclosed: 2026-04-01. Critical: 3, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-20857 | Critical | 9.8 | 2022-07-21 | Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, read or upload container image… |
CVE-2022-20858 | Critical | 9.8 | 2022-07-21 | Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, read or upload container image… |
CVE-2022-20861 | Critical | 9.8 | 2022-07-21 | Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, read or upload container image… |
CVE-2025-20163 | High | 8.7 | 2025-06-04 | A vulnerability in the SSH implementation of Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an unauthenticated, remote attacker to impersonate Cisc… |
CVE-2024-20281 | High | 7.5 | 2024-04-03 | A vulnerability in the web-based management interface of Cisco Nexus Dashboard and Cisco Nexus Dashboard hosted services could allow an unauthenticated, remote… |
CVE-2023-20014 | High | 7.5 | 2023-02-16 | A vulnerability in the DNS functionality of Cisco Nexus Dashboard Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) c… |
CVE-2022-20860 | High | 7.4 | 2022-07-21 | A vulnerability in the SSL/TLS implementation of Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to alter communications with associated… |
CVE-2026-20042 | Medium | 6.5 | 2026-04-01 | A vulnerability in the configuration backup feature of Cisco Nexus Dashboard could allow an attacker who has the encryption password and access to Full or Conf… |
CVE-2025-20344 | Medium | 6.5 | 2025-08-27 | A vulnerability in the backup restore functionality of Cisco Nexus Dashboard could allow an authenticated, remote attacker to conduct a path traversal attack o… |
CVE-2026-20041 | Medium | 6.1 | 2026-04-01 | A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthenticated, remote attacker to conduct a server-side request fo… |
CVE-2023-20053 | Medium | 6.1 | 2023-02-16 | A vulnerability in the web-based management interface of Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to conduct a cross-site scriptin… |
CVE-2024-20282 | Medium | 6.0 | 2024-04-03 | A vulnerability in Cisco Nexus Dashboard could allow an authenticated, local attacker with valid rescue-user credentials to elevate privileges to root on an af… |
CVE-2022-20909 | Medium | 6.0 | 2022-07-21 | Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local attacker to elevate privileges on an affected device. These vulnerabiliti… |
CVE-2022-20906 | Medium | 6.0 | 2022-07-21 | Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local attacker to elevate privileges on an affected device. These vulnerabiliti… |
CVE-2022-20907 | Medium | 6.0 | 2022-07-21 | Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local attacker to elevate privileges on an affected device. These vulnerabiliti… |
CVE-2022-20908 | Medium | 6.0 | 2022-07-21 | Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local attacker to elevate privileges on an affected device. These vulnerabiliti… |
CVE-2024-20442 | Medium | 5.4 | 2024-10-02 | A vulnerability in the REST API endpoints of Cisco Nexus Dashboard could allow an authenticated, low-privileged, remote attacker to perform limited Administrat… |
CVE-2025-20150 | Medium | 5.3 | 2025-04-16 | A vulnerability in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to enumerate LDAP user accounts. This vulnerability is due to the i… |
CVE-2025-20348 | Medium | 5.0 | 2025-08-27 | A vulnerability in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an authenticated, low-privile… |
CVE-2026-20174 | Medium | 4.9 | 2026-04-01 | A vulnerability in the Metadata update feature of Cisco Nexus Dashboard Insights could allow an authenticated, remote attacker to write arbitrary files to an a… |