Unsuspecting SSH Attacks on Cisco Catalyst Center
CVE-2024-20350

7.5HIGH

Key Information:

Vendor: Cisco
Status: Cisco Digital Network Architecture Center (dna Center)
Vendor: CVE Published:; 25 September 2024

Badges

👾 Exploit Exists

Summary

A vulnerability exists in the SSH server of Cisco Catalyst Center that enables an unauthenticated remote attacker to impersonate the appliance. This issue arises from a static SSH host key, which makes it susceptible to machine-in-the-middle attacks. Attackers exploiting this vulnerability can intercept and manipulate traffic between SSH clients and the Cisco Catalyst Center. Consequently, they could impersonate the device, inject unauthorized commands into terminal sessions, and potentially compromise valid user credentials.

Affected Version(s)

Cisco Digital Network Architecture Center (DNA Center) 1.4.0.0

Cisco Digital Network Architecture Center (DNA Center) 2.1.1.0

Cisco Digital Network Architecture Center (DNA Center) 2.1.1.3

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

👾
Exploit known to exist
Sep 27, 2024
Vulnerability published
Sep 25, 2024