cbcvebase.
CVE-2022-20858
published 2022-07-21

CVE-2022-20858: Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, read or upload container image…

PriorityP260critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.16%
63.1th percentile
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to execute arbitrary commands, read or upload container image files, or perform a cross-site request forgery attack. For more information about these vulnerabilities, see the Details section of this advisory.

Affected

3 ranges
VendorProductVersion rangeFixed in
ciscocisco_nexus_dashboard
cisconexus_dashboard>= 2.0 < 2.2\(1e\)2.2\(1e\)
cisconexus_dashboard_unauthorized_access

Detection & IOCsextracted from sources · hover to see the quote

  • Unauthenticated remote attacker can read or upload container image files on Cisco Nexus Dashboard — monitor for unexpected unauthenticated HTTP requests targeting container image endpoints
  • Vulnerability is rooted in missing authentication for critical function (CWE-306) — alert on unauthenticated access to sensitive Nexus Dashboard API/service endpoints that normally require authentication
  • Track Cisco bug IDs CSCwa75451, CSCwa93560, CSCwb24518 for patch status and vendor threat intelligence updates related to this CVE
  • ·No workarounds are available for these vulnerabilities — patching via Cisco software updates is the only remediation path

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vendor_cisco9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.