CVE-2025-20346
published 2025-11-13CVE-2025-20346: A vulnerability in Cisco Catalyst Center could allow an authenticated, remote attacker to execute operations that should require Administrator privileges. The…
medium4.3CVSS 3.1
AVNACLPRLUINSUCNILAN
A vulnerability in Cisco Catalyst Center could allow an authenticated, remote attacker to execute operations that should require Administrator privileges. The attacker would need valid read-only user credentials.
This vulnerability is due to improper role-based access control (RBAC). An attacker could exploit this vulnerability by logging in to an affected system and modifying certain policy configurations. A successful exploit could allow the attacker to modify policy configurations that are reserved for the Administrator role. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Observer.
Affected
110 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | catalyst_center | < 2.3.7.10 | 2.3.7.10 |
| cisco | catalyst_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |