CVE-2025-20349
published 2025-11-13CVE-2025-20349: A vulnerability in the REST API of Cisco Catalyst Center could allow an authenticated, remote attacker to execute arbitrary commands in a restricted container…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
A vulnerability in the REST API of Cisco Catalyst Center could allow an authenticated, remote attacker to execute arbitrary commands in a restricted container as the root user.
This vulnerability is due to insufficient validation of user-supplied input in REST API request parameters. An attacker could exploit this vulnerability by sending a crafted API request to an affected device. A successful exploit could allow the attacker to inject arbitrary commands that would then be executed in a restricted container with root privileges. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Observer.
Affected
111 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | catalyst_center | < 2.3.7.10 | 2.3.7.10 |
| cisco | catalyst_center_rest | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |
| cisco | cisco_digital_network_architecture_center | — | — |