SSH Implementation Vulnerability in Cisco Nexus Dashboard Fabric Controller
CVE-2025-20163

8.7HIGH

Key Information:

Vendor

Cisco
Status
Cisco Data Center Network Manager
Cisco Nexus Dashboard
Vendor
CVE Published:
4 June 2025

Badges

👾 Exploit Exists

What is CVE-2025-20163?

A vulnerability in the SSH implementation of Cisco Nexus Dashboard Fabric Controller (NDFC) allows unauthenticated remote attackers to impersonate NDFC-managed devices. This issue arises from insufficient validation of SSH host keys, enabling attackers to execute machine-in-the-middle attacks on SSH connections. By exploiting this vulnerability, attackers can intercept traffic intended for managed devices, potentially allowing them to impersonate these devices and capture sensitive user credentials. Addressing this vulnerability is crucial to maintain the integrity and security of Cisco NDFC environments.

Affected Version(s)

Cisco Data Center Network Manager 11.2(1)

Cisco Data Center Network Manager 7.0(2)

Cisco Data Center Network Manager 10.3(2)IPFM

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:
8.7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-20163 : SSH Implementation Vulnerability in Cisco Nexus Dashboard Fabric Controller