CVE-2022-20913

A vulnerability in Cisco Nexus Dashboard could allow an authenticated, remote attacker to write arbitrary files on an affected device. This vulnerability is due to insufficient input validation in the web-based management interface of Cisco Nexus Dashboard. An attacker with Administrator credentials could exploit this vulnerability by uploading a crafted file. A successful exploit could allow the attacker to overwrite arbitrary files on an affected device.

Severity	MEDIUM
CVSS	4.9
CWE	CWE-23
KEV
Published	3 years ago
Modified	1 year ago

Related Products

Product	Advisory	Evidence
Cisco Nexus Dashboard	cisco-sa-ndb-afw-2MT9tb99	Cisco OpenVuln