CVE-2021-1269
First published: Wed Jan 20 2021(Updated: )
Multiple vulnerabilities in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to view, modify, and delete data without proper authorization. For more information about these vulnerabilities, see the Details section of this advisory.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Data Center Network Manager | <11.5\(1\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-1269?
CVE-2021-1269 is a vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) that allows an authenticated remote attacker to view, modify, and delete data without proper authorization.
What is the severity of CVE-2021-1269?
The severity of CVE-2021-1269 is medium with a CVSS score of 6.3.
How can an attacker exploit CVE-2021-1269?
An attacker can exploit CVE-2021-1269 by leveraging an authenticated session on the web-based management interface of Cisco DCNM to perform unauthorized actions on the system.
Is there a fix available for CVE-2021-1269?
Yes, Cisco has released a software update to address the vulnerability. Please refer to the advisory linked in the references for more information on available fixes.
What is CWE-863?
CWE-863 is a weakness category that refers to the incorrect authorization vulnerability, which is relevant to CVE-2021-1269.
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-index
- vendor/cisco
- canonical/cisco data center network manager