CVE-2022-20857

Summary

Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, read or upload container image files, or perform a cross-site request forgery attack. For more information about these vulnerabilities, see the Details section of this advisory.

Affected Software

VendorProductVersion RangeStatus
CiscoCisco Nexus Dashboardn/aaffected

Weaknesses

  • CWE-306: CWE-306

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References