A vulnerability in Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to view sensitive database information on an affected device. The vulnerability is due to the absence of authentication for sensitive information. An attacker could exploit this vulnerability by sending crafted curl commands to an affected device. A successful exploit could allow the attacker to view sensitive database information on the affected device.
History

Wed, 13 Nov 2024 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2020-11-18T17:40:28.504631Z

Updated: 2024-11-13T17:39:43.830Z

Reserved: 2020-09-24T00:00:00

Link: CVE-2020-26076

cve-icon Vulnrichment

Updated: 2024-08-04T15:49:07.065Z

cve-icon NVD

Status : Modified

Published: 2020-11-18T18:15:11.730

Modified: 2024-11-21T05:19:11.020

Link: CVE-2020-26076

cve-icon Redhat

No data.