CVE-2018-0427

CVE-2018-0427

Vendor Cisco Systems, Inc.
Product Digital Network Architecture (DNA) Center
Weakness CWE-77
Published August 15, 2018
Last update November 26, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability in the CronJob scheduler API of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to perform a command injection attack. The vulnerability is due to incorrect input validation of user-supplied data. An attacker could exploit this vulnerability by sending a malicious packet. A successful exploit could allow the attacker to execute arbitrary commands with root privileges. Cisco Bug IDs: CSCvi42263.

Key dates

02Disclosure timeline

August 15, 2018 CVE published
November 26, 2024 Record updated