CVE-2019-15977: Cisco Data Center Network Manager Authentication Bypass Vulnerabilities
First published: Mon Jan 06 2020(Updated: )
Multiple vulnerabilities in the authentication mechanisms of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Data Center Network Manager | <11.3\(1\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-15977?
CVE-2019-15977 has a high severity rating due to its potential for unauthorized access to administrative functions.
How do I fix CVE-2019-15977?
To fix CVE-2019-15977, upgrade your Cisco Data Center Network Manager to version 11.3(1) or later.
What are the potential impacts of CVE-2019-15977?
CVE-2019-15977 could allow attackers to bypass authentication and gain administrative privileges on affected devices.
Which versions of Cisco Data Center Network Manager are affected by CVE-2019-15977?
CVE-2019-15977 affects Cisco Data Center Network Manager versions prior to 11.3(1).
Is there a workaround for CVE-2019-15977?
There are no known effective workarounds for CVE-2019-15977; patching is the recommended solution.
- collector/nvd-index
- agent/type
- agent/references
- agent/softwarecombine
- agent/author
- agent/description
- agent/severity
- agent/weakness
- agent/title
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- vendor/cisco
- canonical/cisco data center network manager