CVE-2024-20444 - Vulnerability Details

Vendors	Products
Cisco	Data Center Network Manager Nexus Dashboard Fabric Controller

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-raci-T46k3jnN

Type	Values Removed	Values Added
First Time appeared		Cisco nexus Dashboard Fabric Controller
CPEs		cpe:2.3:a:cisco:nexus_dashboard_fabric_controller::::::::
Vendors & Products		Cisco nexus Dashboard Fabric Controller

Type	Values Removed	Values Added
First Time appeared		Cisco Cisco data Center Network Manager
CPEs		cpe:2.3:a:cisco:data_center_network_manager:-:::::::*
Vendors & Products		Cisco Cisco data Center Network Manager
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Type	Values Removed	Values Added
Description		A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center Network Manager (DCNM), could allow an authenticated, remote attacker with network-admin privileges to perform a command injection attack against an affected device.   This vulnerability is due to insufficient validation of command arguments. An attacker could exploit this vulnerability by submitting crafted command arguments to a specific REST API endpoint. A successful exploit could allow the attacker to overwrite sensitive files or crash a specific container, which would restart on its own, causing a low-impact denial of service (DoS) condition.
Title		Cisco Nexus Dashboard Fabric Controller REST API Command Injection Vulnerability
Weaknesses		CWE-88
References		https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-raci-T46k3jnN
Metrics		cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L'}`

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-20444", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2023-11-08T15:08:07.677Z", "datePublished": "2024-10-02T16:54:09.855Z", "dateUpdated": "2024-10-02T19:45:29.694Z"}, "containers": {"cna": {"title": "Cisco Nexus Dashboard Fabric Controller REST API Command Injection Vulnerability", "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L", "baseScore": 5.5, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "availabilityImpact": "LOW"}}], "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center Network Manager (DCNM), could allow an authenticated, remote attacker with network-admin privileges to perform a command injection attack against an affected device.\r\n&nbsp;\r\nThis vulnerability is due to insufficient validation of command arguments. An attacker could exploit this vulnerability by submitting crafted command arguments to a specific REST API endpoint. A successful exploit could allow the attacker to overwrite sensitive files or crash a specific container, which would restart on its own, causing a low-impact denial of service (DoS) condition."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-raci-T46k3jnN", "name": "cisco-sa-ndfc-raci-T46k3jnN"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-ndfc-raci-T46k3jnN", "discovery": "INTERNAL", "defects": ["CSCwj55173"]}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')", "type": "cwe", "cweId": "CWE-88"}]}], "affected": [{"vendor": "Cisco", "product": "Cisco Data Center Network Manager", "versions": [{"version": "11.2(1)", "status": "affected"}, {"version": "7.0(2)", "status": "affected"}, {"version": "10.3(2)IPFM", "status": "affected"}, {"version": "10.1(1)", "status": "affected"}, {"version": "7.2(3)", "status": "affected"}, {"version": "7.2(2)", "status": "affected"}, {"version": "7.2(1)", "status": "affected"}, {"version": "11.0(1)", "status": "affected"}, {"version": "10.4(1)", "status": "affected"}, {"version": "10.2(1)", "status": "affected"}, {"version": "7.2(2a)", "status": "affected"}, {"version": "10.1(2)", "status": "affected"}, {"version": "7.1(1)", "status": "affected"}, {"version": "12.1(1)", "status": "affected"}, {"version": "11.1(1)", "status": "affected"}, {"version": "10.3(1)", "status": "affected"}, {"version": "10.3(1)R(1)", "status": "affected"}, {"version": "7.0(1)", "status": "affected"}, {"version": "10.0(1)", "status": "affected"}, {"version": "7.1(2)", "status": "affected"}, {"version": "11.4(1)", "status": "affected"}, {"version": "10.4(2)", "status": "affected"}, {"version": "11.3(1)", "status": "affected"}, {"version": "11.5(1)", "status": "affected"}, {"version": "11.5(2)", "status": "affected"}, {"version": "11.5(3)", "status": "affected"}, {"version": "12.0.1a", "status": "affected"}, {"version": "11.5(3a)", "status": "affected"}, {"version": "12.0.2d", "status": "affected"}, {"version": "12.0.2f", "status": "affected"}, {"version": "11.5(4)", "status": "affected"}, {"version": "12.1.1", "status": "affected"}, {"version": "12.1.1e", "status": "affected"}, {"version": "12.1.1p", "status": "affected"}, {"version": "12.1.2e", "status": "affected"}, {"version": "12.1.2p", "status": "affected"}, {"version": "12.1.3b", "status": "affected"}, {"version": "12.2.1", "status": "affected"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-10-02T16:54:09.855Z"}}, "adp": [{"affected": [{"vendor": "cisco", "product": "data_center_network_manager", "cpes": ["cpe:2.3:a:cisco:data_center_network_manager:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "11.2(1)", "status": "affected"}, {"version": "7.0(2)", "status": "affected"}, {"version": "10.3(2)IPFM", "status": "affected"}, {"version": "10.1(1)", "status": "affected"}, {"version": "7.2(3)", "status": "affected"}, {"version": "7.2(2)", "status": "affected"}, {"version": "7.2(1)", "status": "affected"}, {"version": "11.0(1)", "status": "affected"}, {"version": "10.4(1)", "status": "affected"}, {"version": "10.2(1)", "status": "affected"}, {"version": "7.2(2a)", "status": "affected"}, {"version": "10.1(2)", "status": "affected"}, {"version": "7.1(1)", "status": "affected"}, {"version": "12.1(1)", "status": "affected"}, {"version": "11.1(1)", "status": "affected"}, {"version": "10.3(1)", "status": "affected"}, {"version": "10.3(1)R(1)", "status": "affected"}, {"version": "7.0(1)", "status": "affected"}, {"version": "10.0(1)", "status": "affected"}, {"version": "7.1(2)", "status": "affected"}, {"version": "11.4(1)", "status": "affected"}, {"version": "10.4(2)", "status": "affected"}, {"version": "11.3(1)", "status": "affected"}, {"version": "11.5(1)", "status": "affected"}, {"version": "11.5(2)", "status": "affected"}, {"version": "11.5(3)", "status": "affected"}, {"version": "12.0.1a", "status": "affected"}, {"version": "11.5(3a)", "status": "affected"}, {"version": "12.0.2d", "status": "affected"}, {"version": "12.0.2f", "status": "affected"}, {"version": "11.5(4)", "status": "affected"}, {"version": "12.1.1", "status": "affected"}, {"version": "12.1.1e", "status": "affected"}, {"version": "12.1.1p", "status": "affected"}, {"version": "12.1.2e", "status": "affected"}, {"version": "12.1.2p", "status": "affected"}, {"version": "12.1.3b", "status": "affected"}, {"version": "12.2.1", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-02T19:29:46.344080Z", "id": "CVE-2024-20444", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-02T19:45:29.694Z"}}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2024-20444 (string)

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

state : PUBLISHED (string)

assignerShortName : cisco (string)

dateReserved : 2023-11-08T15:08:07.677Z (string)

datePublished : 2024-10-02T16:54:09.855Z (string)

dateUpdated : 2024-10-02T19:45:29.694Z (string)

}

containers : { »

cna : { »

title : Cisco Nexus Dashboard Fabric Controller REST API Command Injection Vulnerability (string)

metrics : [ »

0 : { »

format : cvssV3_1 (string)

cvssV3_1 : { »

version : 3.1 (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L (string)

baseScore : 5.5 (number)

baseSeverity : MEDIUM (string)

attackVector : NETWORK (string)

attackComplexity : LOW (string)

privilegesRequired : HIGH (string)

userInteraction : NONE (string)

scope : UNCHANGED (string)

confidentialityImpact : NONE (string)

integrityImpact : HIGH (string)

availabilityImpact : LOW (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center Network Manager (DCNM), could allow an authenticated, remote attacker with network-admin privileges to perform a command injection attack against an affected device.   This vulnerability is due to insufficient validation of command arguments. An attacker could exploit this vulnerability by submitting crafted command arguments to a specific REST API endpoint. A successful exploit could allow the attacker to overwrite sensitive files or crash a specific container, which would restart on its own, causing a low-impact denial of service (DoS) condition. (string)

}

]

references : [ »

0 : { »

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-raci-T46k3jnN (string)

name : cisco-sa-ndfc-raci-T46k3jnN (string)

}

]

exploits : [ »

0 : { »

lang : en (string)

value : The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. (string)

}

]

source : { »

advisory : cisco-sa-ndfc-raci-T46k3jnN (string)

discovery : INTERNAL (string)

defects : [ »

0 : CSCwj55173 (string)

]

}

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

description : Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') (string)

type : cwe (string)

cweId : CWE-88 (string)

}

]

}

]

affected : [ »

0 : { »

vendor : Cisco (string)

product : Cisco Data Center Network Manager (string)

versions : [ »

0 : { »

version : 11.2(1) (string)

status : affected (string)

}

1 : { »

version : 7.0(2) (string)

status : affected (string)

}

2 : { »

version : 10.3(2)IPFM (string)

status : affected (string)

}

3 : { »

version : 10.1(1) (string)

status : affected (string)

}

4 : { »

version : 7.2(3) (string)

status : affected (string)

}

5 : { »

version : 7.2(2) (string)

status : affected (string)

}

6 : { »

version : 7.2(1) (string)

status : affected (string)

}

7 : { »

version : 11.0(1) (string)

status : affected (string)

}

8 : { »

version : 10.4(1) (string)

status : affected (string)

}

9 : { »

version : 10.2(1) (string)

status : affected (string)

}

10 : { »

version : 7.2(2a) (string)

status : affected (string)

}

11 : { »

version : 10.1(2) (string)

status : affected (string)

}

12 : { »

version : 7.1(1) (string)

status : affected (string)

}

13 : { »

version : 12.1(1) (string)

status : affected (string)

}

14 : { »

version : 11.1(1) (string)

status : affected (string)

}

15 : { »

version : 10.3(1) (string)

status : affected (string)

}

16 : { »

version : 10.3(1)R(1) (string)

status : affected (string)

}

17 : { »

version : 7.0(1) (string)

status : affected (string)

}

18 : { »

version : 10.0(1) (string)

status : affected (string)

}

19 : { »

version : 7.1(2) (string)

status : affected (string)

}

20 : { »

version : 11.4(1) (string)

status : affected (string)

}

21 : { »

version : 10.4(2) (string)

status : affected (string)

}

22 : { »

version : 11.3(1) (string)

status : affected (string)

}

23 : { »

version : 11.5(1) (string)

status : affected (string)

}

24 : { »

version : 11.5(2) (string)

status : affected (string)

}

25 : { »

version : 11.5(3) (string)

status : affected (string)

}

26 : { »

version : 12.0.1a (string)

status : affected (string)

}

27 : { »

version : 11.5(3a) (string)

status : affected (string)

}

28 : { »

version : 12.0.2d (string)

status : affected (string)

}

29 : { »

version : 12.0.2f (string)

status : affected (string)

}

30 : { »

version : 11.5(4) (string)

status : affected (string)

}

31 : { »

version : 12.1.1 (string)

status : affected (string)

}

32 : { »

version : 12.1.1e (string)

status : affected (string)

}

33 : { »

version : 12.1.1p (string)

status : affected (string)

}

34 : { »

version : 12.1.2e (string)

status : affected (string)

}

35 : { »

version : 12.1.2p (string)

status : affected (string)

}

36 : { »

version : 12.1.3b (string)

status : affected (string)

}

37 : { »

version : 12.2.1 (string)

status : affected (string)

}

]

defaultStatus : unknown (string)

}

]

providerMetadata : { »

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

dateUpdated : 2024-10-02T16:54:09.855Z (string)

}

adp : [ »

0 : { »

affected : [ »

0 : { »

vendor : cisco (string)

product : data_center_network_manager (string)

cpes : [ »

0 : cpe:2.3:a:cisco:data_center_network_manager:-:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 11.2(1) (string)

status : affected (string)

}

1 : { »

version : 7.0(2) (string)

status : affected (string)

}

2 : { »

version : 10.3(2)IPFM (string)

status : affected (string)

}

3 : { »

version : 10.1(1) (string)

status : affected (string)

}

4 : { »

version : 7.2(3) (string)

status : affected (string)

}

5 : { »

version : 7.2(2) (string)

status : affected (string)

}

6 : { »

version : 7.2(1) (string)

status : affected (string)

}

7 : { »

version : 11.0(1) (string)

status : affected (string)

}

8 : { »

version : 10.4(1) (string)

status : affected (string)

}

9 : { »

version : 10.2(1) (string)

status : affected (string)

}

10 : { »

version : 7.2(2a) (string)

status : affected (string)

}

11 : { »

version : 10.1(2) (string)

status : affected (string)

}

12 : { »

version : 7.1(1) (string)

status : affected (string)

}

13 : { »

version : 12.1(1) (string)

status : affected (string)

}

14 : { »

version : 11.1(1) (string)

status : affected (string)

}

15 : { »

version : 10.3(1) (string)

status : affected (string)

}

16 : { »

version : 10.3(1)R(1) (string)

status : affected (string)

}

17 : { »

version : 7.0(1) (string)

status : affected (string)

}

18 : { »

version : 10.0(1) (string)

status : affected (string)

}

19 : { »

version : 7.1(2) (string)

status : affected (string)

}

20 : { »

version : 11.4(1) (string)

status : affected (string)

}

21 : { »

version : 10.4(2) (string)

status : affected (string)

}

22 : { »

version : 11.3(1) (string)

status : affected (string)

}

23 : { »

version : 11.5(1) (string)

status : affected (string)

}

24 : { »

version : 11.5(2) (string)

status : affected (string)

}

25 : { »

version : 11.5(3) (string)

status : affected (string)

}

26 : { »

version : 12.0.1a (string)

status : affected (string)

}

27 : { »

version : 11.5(3a) (string)

status : affected (string)

}

28 : { »

version : 12.0.2d (string)

status : affected (string)

}

29 : { »

version : 12.0.2f (string)

status : affected (string)

}

30 : { »

version : 11.5(4) (string)

status : affected (string)

}

31 : { »

version : 12.1.1 (string)

status : affected (string)

}

32 : { »

version : 12.1.1e (string)

status : affected (string)

}

33 : { »

version : 12.1.1p (string)

status : affected (string)

}

34 : { »

version : 12.1.2e (string)

status : affected (string)

}

35 : { »

version : 12.1.2p (string)

status : affected (string)

}

36 : { »

version : 12.1.3b (string)

status : affected (string)

}

37 : { »

version : 12.2.1 (string)

status : affected (string)

}

]

}

]

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2024-10-02T19:29:46.344080Z (string)

id : CVE-2024-20444 (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : total (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-10-02T19:45:29.694Z (string)

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-20444", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-10-02T19:29:46.344080Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:cisco:data_center_network_manager:-:*:*:*:*:*:*:*"], "vendor": "cisco", "product": "data_center_network_manager", "versions": [{"status": "affected", "version": "11.2(1)"}, {"status": "affected", "version": "7.0(2)"}, {"status": "affected", "version": "10.3(2)IPFM"}, {"status": "affected", "version": "10.1(1)"}, {"status": "affected", "version": "7.2(3)"}, {"status": "affected", "version": "7.2(2)"}, {"status": "affected", "version": "7.2(1)"}, {"status": "affected", "version": "11.0(1)"}, {"status": "affected", "version": "10.4(1)"}, {"status": "affected", "version": "10.2(1)"}, {"status": "affected", "version": "7.2(2a)"}, {"status": "affected", "version": "10.1(2)"}, {"status": "affected", "version": "7.1(1)"}, {"status": "affected", "version": "12.1(1)"}, {"status": "affected", "version": "11.1(1)"}, {"status": "affected", "version": "10.3(1)"}, {"status": "affected", "version": "10.3(1)R(1)"}, {"status": "affected", "version": "7.0(1)"}, {"status": "affected", "version": "10.0(1)"}, {"status": "affected", "version": "7.1(2)"}, {"status": "affected", "version": "11.4(1)"}, {"status": "affected", "version": "10.4(2)"}, {"status": "affected", "version": "11.3(1)"}, {"status": "affected", "version": "11.5(1)"}, {"status": "affected", "version": "11.5(2)"}, {"status": "affected", "version": "11.5(3)"}, {"status": "affected", "version": "12.0.1a"}, {"status": "affected", "version": "11.5(3a)"}, {"status": "affected", "version": "12.0.2d"}, {"status": "affected", "version": "12.0.2f"}, {"status": "affected", "version": "11.5(4)"}, {"status": "affected", "version": "12.1.1"}, {"status": "affected", "version": "12.1.1e"}, {"status": "affected", "version": "12.1.1p"}, {"status": "affected", "version": "12.1.2e"}, {"status": "affected", "version": "12.1.2p"}, {"status": "affected", "version": "12.1.3b"}, {"status": "affected", "version": "12.2.1"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-02T19:45:21.317Z"}}], "cna": {"title": "Cisco Nexus Dashboard Fabric Controller REST API Command Injection Vulnerability", "source": {"defects": ["CSCwj55173"], "advisory": "cisco-sa-ndfc-raci-T46k3jnN", "discovery": "INTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "Cisco", "product": "Cisco Data Center Network Manager", "versions": [{"status": "affected", "version": "11.2(1)"}, {"status": "affected", "version": "7.0(2)"}, {"status": "affected", "version": "10.3(2)IPFM"}, {"status": "affected", "version": "10.1(1)"}, {"status": "affected", "version": "7.2(3)"}, {"status": "affected", "version": "7.2(2)"}, {"status": "affected", "version": "7.2(1)"}, {"status": "affected", "version": "11.0(1)"}, {"status": "affected", "version": "10.4(1)"}, {"status": "affected", "version": "10.2(1)"}, {"status": "affected", "version": "7.2(2a)"}, {"status": "affected", "version": "10.1(2)"}, {"status": "affected", "version": "7.1(1)"}, {"status": "affected", "version": "12.1(1)"}, {"status": "affected", "version": "11.1(1)"}, {"status": "affected", "version": "10.3(1)"}, {"status": "affected", "version": "10.3(1)R(1)"}, {"status": "affected", "version": "7.0(1)"}, {"status": "affected", "version": "10.0(1)"}, {"status": "affected", "version": "7.1(2)"}, {"status": "affected", "version": "11.4(1)"}, {"status": "affected", "version": "10.4(2)"}, {"status": "affected", "version": "11.3(1)"}, {"status": "affected", "version": "11.5(1)"}, {"status": "affected", "version": "11.5(2)"}, {"status": "affected", "version": "11.5(3)"}, {"status": "affected", "version": "12.0.1a"}, {"status": "affected", "version": "11.5(3a)"}, {"status": "affected", "version": "12.0.2d"}, {"status": "affected", "version": "12.0.2f"}, {"status": "affected", "version": "11.5(4)"}, {"status": "affected", "version": "12.1.1"}, {"status": "affected", "version": "12.1.1e"}, {"status": "affected", "version": "12.1.1p"}, {"status": "affected", "version": "12.1.2e"}, {"status": "affected", "version": "12.1.2p"}, {"status": "affected", "version": "12.1.3b"}, {"status": "affected", "version": "12.2.1"}], "defaultStatus": "unknown"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-raci-T46k3jnN", "name": "cisco-sa-ndfc-raci-T46k3jnN"}], "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center Network Manager (DCNM), could allow an authenticated, remote attacker with network-admin privileges to perform a command injection attack against an affected device.\r\n&nbsp;\r\nThis vulnerability is due to insufficient validation of command arguments. An attacker could exploit this vulnerability by submitting crafted command arguments to a specific REST API endpoint. A successful exploit could allow the attacker to overwrite sensitive files or crash a specific container, which would restart on its own, causing a low-impact denial of service (DoS) condition."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-88", "description": "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-10-02T16:54:09.855Z"}}}, "cveMetadata": {"cveId": "CVE-2024-20444", "state": "PUBLISHED", "dateUpdated": "2024-10-02T19:45:29.694Z", "dateReserved": "2023-11-08T15:08:07.677Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2024-10-02T16:54:09.855Z", "assignerShortName": "cisco"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2024-20444 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : total (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-10-02T19:29:46.344080Z (string)

}

]

affected : [ »

0 : { »

cpes : [ »

0 : cpe:2.3:a:cisco:data_center_network_manager:-:*:*:*:*:*:*:* (string)

]

vendor : cisco (string)

product : data_center_network_manager (string)

versions : [ »

0 : { »

status : affected (string)

version : 11.2(1) (string)

}

1 : { »

status : affected (string)

version : 7.0(2) (string)

}

2 : { »

status : affected (string)

version : 10.3(2)IPFM (string)

}

3 : { »

status : affected (string)

version : 10.1(1) (string)

}

4 : { »

status : affected (string)

version : 7.2(3) (string)

}

5 : { »

status : affected (string)

version : 7.2(2) (string)

}

6 : { »

status : affected (string)

version : 7.2(1) (string)

}

7 : { »

status : affected (string)

version : 11.0(1) (string)

}

8 : { »

status : affected (string)

version : 10.4(1) (string)

}

9 : { »

status : affected (string)

version : 10.2(1) (string)

}

10 : { »

status : affected (string)

version : 7.2(2a) (string)

}

11 : { »

status : affected (string)

version : 10.1(2) (string)

}

12 : { »

status : affected (string)

version : 7.1(1) (string)

}

13 : { »

status : affected (string)

version : 12.1(1) (string)

}

14 : { »

status : affected (string)

version : 11.1(1) (string)

}

15 : { »

status : affected (string)

version : 10.3(1) (string)

}

16 : { »

status : affected (string)

version : 10.3(1)R(1) (string)

}

17 : { »

status : affected (string)

version : 7.0(1) (string)

}

18 : { »

status : affected (string)

version : 10.0(1) (string)

}

19 : { »

status : affected (string)

version : 7.1(2) (string)

}

20 : { »

status : affected (string)

version : 11.4(1) (string)

}

21 : { »

status : affected (string)

version : 10.4(2) (string)

}

22 : { »

status : affected (string)

version : 11.3(1) (string)

}

23 : { »

status : affected (string)

version : 11.5(1) (string)

}

24 : { »

status : affected (string)

version : 11.5(2) (string)

}

25 : { »

status : affected (string)

version : 11.5(3) (string)

}

26 : { »

status : affected (string)

version : 12.0.1a (string)

}

27 : { »

status : affected (string)

version : 11.5(3a) (string)

}

28 : { »

status : affected (string)

version : 12.0.2d (string)

}

29 : { »

status : affected (string)

version : 12.0.2f (string)

}

30 : { »

status : affected (string)

version : 11.5(4) (string)

}

31 : { »

status : affected (string)

version : 12.1.1 (string)

}

32 : { »

status : affected (string)

version : 12.1.1e (string)

}

33 : { »

status : affected (string)

version : 12.1.1p (string)

}

34 : { »

status : affected (string)

version : 12.1.2e (string)

}

35 : { »

status : affected (string)

version : 12.1.2p (string)

}

36 : { »

status : affected (string)

version : 12.1.3b (string)

}

37 : { »

status : affected (string)

version : 12.2.1 (string)

}

]

defaultStatus : unknown (string)

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-10-02T19:45:21.317Z (string)

}

]

cna : { »

title : Cisco Nexus Dashboard Fabric Controller REST API Command Injection Vulnerability (string)

source : { »

defects : [ »

0 : CSCwj55173 (string)

]

advisory : cisco-sa-ndfc-raci-T46k3jnN (string)

discovery : INTERNAL (string)

}

metrics : [ »

0 : { »

format : cvssV3_1 (string)

cvssV3_1 : { »

scope : UNCHANGED (string)

version : 3.1 (string)

baseScore : 5.5 (number)

attackVector : NETWORK (string)

baseSeverity : MEDIUM (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L (string)

integrityImpact : HIGH (string)

userInteraction : NONE (string)

attackComplexity : LOW (string)

availabilityImpact : LOW (string)

privilegesRequired : HIGH (string)

confidentialityImpact : NONE (string)

}

]

affected : [ »

0 : { »

vendor : Cisco (string)

product : Cisco Data Center Network Manager (string)

versions : [ »

0 : { »

status : affected (string)

version : 11.2(1) (string)

}

1 : { »

status : affected (string)

version : 7.0(2) (string)

}

2 : { »

status : affected (string)

version : 10.3(2)IPFM (string)

}

3 : { »

status : affected (string)

version : 10.1(1) (string)

}

4 : { »

status : affected (string)

version : 7.2(3) (string)

}

5 : { »

status : affected (string)

version : 7.2(2) (string)

}

6 : { »

status : affected (string)

version : 7.2(1) (string)

}

7 : { »

status : affected (string)

version : 11.0(1) (string)

}

8 : { »

status : affected (string)

version : 10.4(1) (string)

}

9 : { »

status : affected (string)

version : 10.2(1) (string)

}

10 : { »

status : affected (string)

version : 7.2(2a) (string)

}

11 : { »

status : affected (string)

version : 10.1(2) (string)

}

12 : { »

status : affected (string)

version : 7.1(1) (string)

}

13 : { »

status : affected (string)

version : 12.1(1) (string)

}

14 : { »

status : affected (string)

version : 11.1(1) (string)

}

15 : { »

status : affected (string)

version : 10.3(1) (string)

}

16 : { »

status : affected (string)

version : 10.3(1)R(1) (string)

}

17 : { »

status : affected (string)

version : 7.0(1) (string)

}

18 : { »

status : affected (string)

version : 10.0(1) (string)

}

19 : { »

status : affected (string)

version : 7.1(2) (string)

}

20 : { »

status : affected (string)

version : 11.4(1) (string)

}

21 : { »

status : affected (string)

version : 10.4(2) (string)

}

22 : { »

status : affected (string)

version : 11.3(1) (string)

}

23 : { »

status : affected (string)

version : 11.5(1) (string)

}

24 : { »

status : affected (string)

version : 11.5(2) (string)

}

25 : { »

status : affected (string)

version : 11.5(3) (string)

}

26 : { »

status : affected (string)

version : 12.0.1a (string)

}

27 : { »

status : affected (string)

version : 11.5(3a) (string)

}

28 : { »

status : affected (string)

version : 12.0.2d (string)

}

29 : { »

status : affected (string)

version : 12.0.2f (string)

}

30 : { »

status : affected (string)

version : 11.5(4) (string)

}

31 : { »

status : affected (string)

version : 12.1.1 (string)

}

32 : { »

status : affected (string)

version : 12.1.1e (string)

}

33 : { »

status : affected (string)

version : 12.1.1p (string)

}

34 : { »

status : affected (string)

version : 12.1.2e (string)

}

35 : { »

status : affected (string)

version : 12.1.2p (string)

}

36 : { »

status : affected (string)

version : 12.1.3b (string)

}

37 : { »

status : affected (string)

version : 12.2.1 (string)

}

]

defaultStatus : unknown (string)

}

]

exploits : [ »

0 : { »

lang : en (string)

value : The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. (string)

}

]

references : [ »

0 : { »

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-raci-T46k3jnN (string)

name : cisco-sa-ndfc-raci-T46k3jnN (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center Network Manager (DCNM), could allow an authenticated, remote attacker with network-admin privileges to perform a command injection attack against an affected device.   This vulnerability is due to insufficient validation of command arguments. An attacker could exploit this vulnerability by submitting crafted command arguments to a specific REST API endpoint. A successful exploit could allow the attacker to overwrite sensitive files or crash a specific container, which would restart on its own, causing a low-impact denial of service (DoS) condition. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : cwe (string)

cweId : CWE-88 (string)

description : Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') (string)

}

]

}

]

providerMetadata : { »

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

dateUpdated : 2024-10-02T16:54:09.855Z (string)

}

cveMetadata : { »

cveId : CVE-2024-20444 (string)

state : PUBLISHED (string)

dateUpdated : 2024-10-02T19:45:29.694Z (string)

dateReserved : 2023-11-08T15:08:07.677Z (string)

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

datePublished : 2024-10-02T16:54:09.855Z (string)

assignerShortName : cisco (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:nexus_dashboard_fabric_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "9E78B4AC-793B-4405-896F-31398AF7CBD2", "versionEndExcluding": "12.2.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center Network Manager (DCNM), could allow an authenticated, remote attacker with network-admin privileges to perform a command injection attack against an affected device.\r\n&nbsp;\r\nThis vulnerability is due to insufficient validation of command arguments. An attacker could exploit this vulnerability by submitting crafted command arguments to a specific REST API endpoint. A successful exploit could allow the attacker to overwrite sensitive files or crash a specific container, which would restart on its own, causing a low-impact denial of service (DoS) condition."}, {"lang": "es", "value": "Una vulnerabilidad en Cisco Nexus Dashboard Fabric Controller (NDFC), anteriormente Cisco Data Center Network Manager (DCNM), podr\u00eda permitir que un atacante remoto autenticado con privilegios de administrador de red realice un ataque de inyecci\u00f3n de comandos contra un dispositivo afectado. Esta vulnerabilidad se debe a una validaci\u00f3n insuficiente de los argumentos de los comandos. Un atacante podr\u00eda aprovechar esta vulnerabilidad enviando argumentos de comandos manipulados a un endpoint de API REST espec\u00edfico. Una explotaci\u00f3n exitosa podr\u00eda permitir al atacante sobrescribir archivos confidenciales o bloquear un contenedor espec\u00edfico, que se reiniciar\u00eda por s\u00ed solo, lo que provocar\u00eda una condici\u00f3n de denegaci\u00f3n de servicio (DoS) de bajo impacto."}], "id": "CVE-2024-20444", "lastModified": "2024-10-08T15:26:38.527", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 4.2, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 4.2, "source": "ykramarz@cisco.com", "type": "Secondary"}]}, "published": "2024-10-02T17:15:16.390", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-raci-T46k3jnN"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-88"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-88"}], "source": "ykramarz@cisco.com", "type": "Secondary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:cisco:nexus_dashboard_fabric_controller:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 9E78B4AC-793B-4405-896F-31398AF7CBD2 (string)

versionEndExcluding : 12.2.2 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center Network Manager (DCNM), could allow an authenticated, remote attacker with network-admin privileges to perform a command injection attack against an affected device.   This vulnerability is due to insufficient validation of command arguments. An attacker could exploit this vulnerability by submitting crafted command arguments to a specific REST API endpoint. A successful exploit could allow the attacker to overwrite sensitive files or crash a specific container, which would restart on its own, causing a low-impact denial of service (DoS) condition. (string)

}

1 : { »

lang : es (string)

value : Una vulnerabilidad en Cisco Nexus Dashboard Fabric Controller (NDFC), anteriormente Cisco Data Center Network Manager (DCNM), podría permitir que un atacante remoto autenticado con privilegios de administrador de red realice un ataque de inyección de comandos contra un dispositivo afectado. Esta vulnerabilidad se debe a una validación insuficiente de los argumentos de los comandos. Un atacante podría aprovechar esta vulnerabilidad enviando argumentos de comandos manipulados a un endpoint de API REST específico. Una explotación exitosa podría permitir al atacante sobrescribir archivos confidenciales o bloquear un contenedor específico, que se reiniciaría por sí solo, lo que provocaría una condición de denegación de servicio (DoS) de bajo impacto. (string)

}

]

id : CVE-2024-20444 (string)

lastModified : 2024-10-08T15:26:38.527 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : LOW (string)

baseScore : 5.5 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : HIGH (string)

privilegesRequired : HIGH (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L (string)

version : 3.1 (string)

}

exploitabilityScore : 1.2 (number)

impactScore : 4.2 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

1 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : LOW (string)

baseScore : 5.5 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : HIGH (string)

privilegesRequired : HIGH (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L (string)

version : 3.1 (string)

}

exploitabilityScore : 1.2 (number)

impactScore : 4.2 (number)

source : ykramarz@cisco.com (string)

type : Secondary (string)

}

]

}

published : 2024-10-02T17:15:16.390 (string)

references : [ »

0 : { »

source : ykramarz@cisco.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-raci-T46k3jnN (string)

}

]

sourceIdentifier : ykramarz@cisco.com (string)

vulnStatus : Analyzed (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-88 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-88 (string)

}

]

source : ykramarz@cisco.com (string)

type : Secondary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact Low

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact Low

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object