CVE-2024-20350

HIGH EPSS 30.2%
Published Sep 25, 20241y ago · Modified Jun 17, 20262w ago
8.1 CVSS 3.1
High
Find Similar
Published Sep 25, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

A vulnerability in the SSH server of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an unauthenticated, remote attacker to impersonate a Cisco Catalyst Center appliance. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a machine-in-the-middle attack on SSH connections, which could allow the attacker to intercept traffic between SSH clients and a Cisco Catalyst Center appliance. A successful exploit could allow the attacker to impersonate the affected appliance, inject commands into the terminal session, and steal valid user credentials.

CVSS Details

Base Score
8.1
Exploitability
2.2
Impact
5.9
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector Network
Attack Complexity High
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
30.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-321

Affected Products 86

VendorProductVersionRange
ciscocatalyst_center1.0.0any
ciscocatalyst_center1.4.0.0any
ciscocatalyst_center2.1.1.0any
ciscocatalyst_center2.1.1.3any
ciscocatalyst_center2.1.2.0any
ciscocatalyst_center2.1.2.3any
ciscocatalyst_center2.1.2.4any
ciscocatalyst_center2.1.2.5any
ciscocatalyst_center2.1.2.6any
ciscocatalyst_center2.1.2.7any
ciscocatalyst_center2.1.2.8any
ciscocatalyst_center2.2.1.0any
ciscocatalyst_center2.2.1.3any
ciscocatalyst_center2.2.2.0any
ciscocatalyst_center2.2.2.1any
ciscocatalyst_center2.2.2.3any
ciscocatalyst_center2.2.2.4any
ciscocatalyst_center2.2.2.5any
ciscocatalyst_center2.2.2.6any
ciscocatalyst_center2.2.2.7any
ciscocatalyst_center2.2.2.8any
ciscocatalyst_center2.2.2.9any
ciscocatalyst_center2.2.3.0any
ciscocatalyst_center2.2.3.3any
ciscocatalyst_center2.2.3.4any
ciscocatalyst_center2.2.3.5any
ciscocatalyst_center2.2.3.6any
ciscocatalyst_center2.3.2.1any
ciscocatalyst_center2.3.2.1-airgapany
ciscocatalyst_center2.3.2.1-airgap-caany
ciscocatalyst_center2.3.2.3any
ciscocatalyst_center2.3.3.0any
ciscocatalyst_center2.3.3.0-airgapany
ciscocatalyst_center2.3.3.1any
ciscocatalyst_center2.3.3.1-airgapany
ciscocatalyst_center2.3.3.3any
ciscocatalyst_center2.3.3.3-airgapany
ciscocatalyst_center2.3.3.3-airgap-caany
ciscocatalyst_center2.3.3.4any
ciscocatalyst_center2.3.3.4any
ciscocatalyst_center2.3.3.4-airgapany
ciscocatalyst_center2.3.3.4-airgap-mdnacany
ciscocatalyst_center2.3.3.5any
ciscocatalyst_center2.3.3.5-airgapany
ciscocatalyst_center2.3.3.6any
ciscocatalyst_center2.3.3.6-70045any
ciscocatalyst_center2.3.3.6-airgapany
ciscocatalyst_center2.3.3.6-airgap-mdnacany
ciscocatalyst_center2.3.3.7any
ciscocatalyst_center2.3.3.7-72323any
ciscocatalyst_center2.3.3.7-72328-airgapany
ciscocatalyst_center2.3.3.7-72328-mdnacany
ciscocatalyst_center2.3.3.7-airgapany
ciscocatalyst_center2.3.3.7-airgap-mdnacany
ciscocatalyst_center2.3.4.0any
ciscocatalyst_center2.3.4.0-airgapany
ciscocatalyst_center2.3.4.3any
ciscocatalyst_center2.3.4.3-airgapany
ciscocatalyst_center2.3.5.0any
ciscocatalyst_center2.3.5.0-airgapany
ciscocatalyst_center2.3.5.0-airgap-mdnacany
ciscocatalyst_center2.3.5.3any
ciscocatalyst_center2.3.5.3-airgapany
ciscocatalyst_center2.3.5.3-airgap-mdnacany
ciscocatalyst_center2.3.5.4any
ciscocatalyst_center2.3.5.4-airgapany
ciscocatalyst_center2.3.5.4-airgap-mdnacany
ciscocatalyst_center2.3.5.5any
ciscocatalyst_center2.3.5.5-70026any
ciscocatalyst_center2.3.5.5-70026any
ciscocatalyst_center2.3.5.5-70026any
ciscocatalyst_center2.3.5.5-70026any
ciscocatalyst_center2.3.5.5-airgapany
ciscocatalyst_center2.3.5.5-airgap-mdnacany
ciscocatalyst_center2.3.6.0any
ciscocatalyst_center2.3.6.0-airgapany
ciscocatalyst_center2.3.7.0any
ciscocatalyst_center2.3.7.0-airgapany
ciscocatalyst_center2.3.7.0-airgap-mdnacany
ciscocatalyst_center2.3.7.0-vaany
ciscocatalyst_center2.3.7.3any
ciscocatalyst_center2.3.7.3-airgapany
ciscocatalyst_center2.3.7.3-airgap-mdnacany
ciscocatalyst_center2.3.7.4any
ciscocatalyst_center2.3.7.4-airgapany
ciscocatalyst_center2.3.7.4-airgap-mdnacany

References 1

  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-ssh-e4uOdASj
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.