CVE-2020-3391 is a vulnerability in Cisco Digital Network Architecture Center
Published on July 2, 2020
Cisco Digital Network Architecture Center Information Disclosure Vulnerability
A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensitive information in clear text. The vulnerability is due to insecure storage of certain unencrypted credentials on an affected device. An attacker could exploit this vulnerability by viewing the network device configuration and obtaining credentials that they may not normally have access to. A successful exploit could allow the attacker to use those credentials to discover and manage network devices.
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2020-3391 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2020-3391
Want to know whenever a new CVE is published for Cisco Digital Network Architecture Center? stack.watch will email you.
Affected Versions
Cisco Digital Network Architecture Center (DNA Center) Version n/a is affected by CVE-2020-3391Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.