{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-20448", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2023-11-08T15:08:07.678Z", "datePublished": "2024-10-02T16:54:17.748Z", "dateUpdated": "2024-10-02T17:26:28.808Z"}, "containers": {"cna": {"title": "Cisco Nexus Dashboard Fabric Controller Credential Information Disclosure Vulnerability", "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N", "baseScore": 6.3, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}}], "descriptions": [{"lang": "en", "value": "A vulnerability in the Cisco Nexus Dashboard Fabric Controller (NDFC) software, formerly Cisco Data Center Network Manager (DCNM), could allow an attacker with access to a backup file to view sensitive information.\r\n\r\nThis vulnerability is due to the improper storage of sensitive information within config only and full backup files. An attacker could exploit this vulnerability by parsing the contents of a backup file that is generated from an affected device. A successful exploit could allow the attacker to access sensitive information, including NDFC-connected device credentials, the NDFC site manager private key, and the scheduled backup file encryption key."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-cidv-XvyX2wLj", "name": "cisco-sa-ndfc-cidv-XvyX2wLj"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-ndfc-cidv-XvyX2wLj", "discovery": "INTERNAL", "defects": ["CSCwj87786"]}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "Cleartext Storage in a File or on Disk", "type": "cwe", "cweId": "CWE-313"}]}], "affected": [{"vendor": "Cisco", "product": "Cisco Data Center Network Manager", "versions": [{"version": "11.2(1)", "status": "affected"}, {"version": "7.0(2)", "status": "affected"}, {"version": "10.3(2)IPFM", "status": "affected"}, {"version": "10.1(1)", "status": "affected"}, {"version": "7.2(3)", "status": "affected"}, {"version": "7.2(2)", "status": "affected"}, {"version": "7.2(1)", "status": "affected"}, {"version": "11.0(1)", "status": "affected"}, {"version": "10.4(1)", "status": "affected"}, {"version": "10.2(1)", "status": "affected"}, {"version": "7.2(2a)", "status": "affected"}, {"version": "10.1(2)", "status": "affected"}, {"version": "7.1(1)", "status": "affected"}, {"version": "12.1(1)", "status": "affected"}, {"version": "11.1(1)", "status": "affected"}, {"version": "10.3(1)", "status": "affected"}, {"version": "10.3(1)R(1)", "status": "affected"}, {"version": "7.0(1)", "status": "affected"}, {"version": "10.0(1)", "status": "affected"}, {"version": "7.1(2)", "status": "affected"}, {"version": "11.4(1)", "status": "affected"}, {"version": "10.4(2)", "status": "affected"}, {"version": "11.3(1)", "status": "affected"}, {"version": "11.5(1)", "status": "affected"}, {"version": "11.5(2)", "status": "affected"}, {"version": "11.5(3)", "status": "affected"}, {"version": "12.0.1a", "status": "affected"}, {"version": "11.5(3a)", "status": "affected"}, {"version": "12.0.2d", "status": "affected"}, {"version": "12.0.2f", "status": "affected"}, {"version": "11.5(4)", "status": "affected"}, {"version": "12.1.1", "status": "affected"}, {"version": "12.1.1e", "status": "affected"}, {"version": "12.1.1p", "status": "affected"}, {"version": "12.1.2e", "status": "affected"}, {"version": "12.1.2p", "status": "affected"}, {"version": "12.1.3b", "status": "affected"}, {"version": "12.2.1", "status": "affected"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-10-02T16:54:17.748Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-02T17:18:00.355679Z", "id": "CVE-2024-20448", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-02T17:26:28.808Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-20448", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-10-02T17:18:00.355679Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-02T17:18:01.298Z"}}], "cna": {"title": "Cisco Nexus Dashboard Fabric Controller Credential Information Disclosure Vulnerability", "source": {"defects": ["CSCwj87786"], "advisory": "cisco-sa-ndfc-cidv-XvyX2wLj", "discovery": "INTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.3, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "Cisco", "product": "Cisco Data Center Network Manager", "versions": [{"status": "affected", "version": "11.2(1)"}, {"status": "affected", "version": "7.0(2)"}, {"status": "affected", "version": "10.3(2)IPFM"}, {"status": "affected", "version": "10.1(1)"}, {"status": "affected", "version": "7.2(3)"}, {"status": "affected", "version": "7.2(2)"}, {"status": "affected", "version": "7.2(1)"}, {"status": "affected", "version": "11.0(1)"}, {"status": "affected", "version": "10.4(1)"}, {"status": "affected", "version": "10.2(1)"}, {"status": "affected", "version": "7.2(2a)"}, {"status": "affected", "version": "10.1(2)"}, {"status": "affected", "version": "7.1(1)"}, {"status": "affected", "version": "12.1(1)"}, {"status": "affected", "version": "11.1(1)"}, {"status": "affected", "version": "10.3(1)"}, {"status": "affected", "version": "10.3(1)R(1)"}, {"status": "affected", "version": "7.0(1)"}, {"status": "affected", "version": "10.0(1)"}, {"status": "affected", "version": "7.1(2)"}, {"status": "affected", "version": "11.4(1)"}, {"status": "affected", "version": "10.4(2)"}, {"status": "affected", "version": "11.3(1)"}, {"status": "affected", "version": "11.5(1)"}, {"status": "affected", "version": "11.5(2)"}, {"status": "affected", "version": "11.5(3)"}, {"status": "affected", "version": "12.0.1a"}, {"status": "affected", "version": "11.5(3a)"}, {"status": "affected", "version": "12.0.2d"}, {"status": "affected", "version": "12.0.2f"}, {"status": "affected", "version": "11.5(4)"}, {"status": "affected", "version": "12.1.1"}, {"status": "affected", "version": "12.1.1e"}, {"status": "affected", "version": "12.1.1p"}, {"status": "affected", "version": "12.1.2e"}, {"status": "affected", "version": "12.1.2p"}, {"status": "affected", "version": "12.1.3b"}, {"status": "affected", "version": "12.2.1"}], "defaultStatus": "unknown"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-cidv-XvyX2wLj", "name": "cisco-sa-ndfc-cidv-XvyX2wLj"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the Cisco Nexus Dashboard Fabric Controller (NDFC) software, formerly Cisco Data Center Network Manager (DCNM), could allow an attacker with access to a backup file to view sensitive information.\r\n\r\nThis vulnerability is due to the improper storage of sensitive information within config only and full backup files. An attacker could exploit this vulnerability by parsing the contents of a backup file that is generated from an affected device. A successful exploit could allow the attacker to access sensitive information, including NDFC-connected device credentials, the NDFC site manager private key, and the scheduled backup file encryption key."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-313", "description": "Cleartext Storage in a File or on Disk"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-10-02T16:54:17.748Z"}}}, "cveMetadata": {"cveId": "CVE-2024-20448", "state": "PUBLISHED", "dateUpdated": "2024-10-02T17:26:28.808Z", "dateReserved": "2023-11-08T15:08:07.678Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2024-10-02T16:54:17.748Z", "assignerShortName": "cisco"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:nexus_dashboard_fabric_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "9E78B4AC-793B-4405-896F-31398AF7CBD2", "versionEndExcluding": "12.2.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the Cisco Nexus Dashboard Fabric Controller (NDFC) software, formerly Cisco Data Center Network Manager (DCNM), could allow an attacker with access to a backup file to view sensitive information.\r\n\r\nThis vulnerability is due to the improper storage of sensitive information within config only and full backup files. An attacker could exploit this vulnerability by parsing the contents of a backup file that is generated from an affected device. A successful exploit could allow the attacker to access sensitive information, including NDFC-connected device credentials, the NDFC site manager private key, and the scheduled backup file encryption key."}, {"lang": "es", "value": "Una vulnerabilidad en el software Cisco Nexus Dashboard Fabric Controller (NDFC), anteriormente Cisco Data Center Network Manager (DCNM), podr\u00eda permitir que un atacante con acceso a un archivo de copia de seguridad vea informaci\u00f3n confidencial. Esta vulnerabilidad se debe al almacenamiento inadecuado de informaci\u00f3n confidencial en archivos de copia de seguridad completa y de solo configuraci\u00f3n. Un atacante podr\u00eda aprovechar esta vulnerabilidad al analizar el contenido de un archivo de copia de seguridad que se genera desde un dispositivo afectado. Una explotaci\u00f3n exitosa podr\u00eda permitir al atacante acceder a informaci\u00f3n confidencial, incluidas las credenciales del dispositivo conectado a NDFC, la clave privada del administrador del sitio de NDFC y la clave de cifrado del archivo de copia de seguridad programada."}], "id": "CVE-2024-20448", "lastModified": "2024-10-08T15:25:47.053", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 4.0, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 4.0, "source": "ykramarz@cisco.com", "type": "Secondary"}]}, "published": "2024-10-02T17:15:16.597", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndfc-cidv-XvyX2wLj"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-312"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-313"}], "source": "ykramarz@cisco.com", "type": "Secondary"}]}

{}