Cisco Data Center Network Manager vulnerabilities

CVE-2018-0210 [HIGH] CWE-352 CVE-2018-0210: A vulnerability in the web-based management interface of Cisco Data Center Network Manager could all A vulnerability in the web-based management interface of Cisco Data Center Network Manager could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. The vulnerability is due to insufficient CSRF protections on the web-based management interface of an affecte

CVE-2017-12343 [HIGH] CWE-79 CVE-2017-12343: Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote a Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote attacker to inject arbitrary values into DCNM configuration parameters, redirect a user to a malicious website, inject malicious content into a DCNM client interface, or conduct a cross-site scripting (XSS) attack against a user of the affected software.

CVE-2017-12346 [MEDIUM] CWE-79 CVE-2017-12346: Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote a Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote attacker to inject arbitrary values into DCNM configuration parameters, redirect a user to a malicious website, inject malicious content into a DCNM client interface, or conduct a cross-site scripting (XSS) attack against a user of the affected software

CVE-2017-12345 [MEDIUM] CWE-79 CVE-2017-12345: Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote a Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote attacker to inject arbitrary values into DCNM configuration parameters, redirect a user to a malicious website, inject malicious content into a DCNM client interface, or conduct a cross-site scripting (XSS) attack against a user of the affected software

CVE-2017-12347 [MEDIUM] CWE-79 CVE-2017-12347: Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote a Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote attacker to inject arbitrary values into DCNM configuration parameters, redirect a user to a malicious website, inject malicious content into a DCNM client interface, or conduct a cross-site scripting (XSS) attack against a user of the affected software

CVE-2017-12344 [MEDIUM] CWE-79 CVE-2017-12344: Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote a Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote attacker to inject arbitrary values into DCNM configuration parameters, redirect a user to a malicious website, inject malicious content into a DCNM client interface, or conduct a cross-site scripting (XSS) attack against a user of the affected software

CVE-2011-4650 [HIGH] CWE-399 CVE-2011-4650: Cisco Data Center Network Manager is affected by Excessive Logging During a TCP Flood on Java Ports. Cisco Data Center Network Manager is affected by Excessive Logging During a TCP Flood on Java Ports. If the size of server.log becomes very big because of too much logging by the DCNM server, then the CPU utilization increases. Known Affected Releases: 5.2(1). Known Fixed Releases: 6.0(0)SL1(0.14) 5.2(2.73)S0. Product identification: CSCtt15295.