CVE-2024-20350
HIGH EPSS 30.2%
Published Sep 25, 20241y ago · Modified Jun 17, 20262w ago
8.1 CVSS 3.1
Published Sep 25, 2024 1y ago
Last Modified Jun 17, 2026 2w ago
Description
A vulnerability in the SSH server of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an unauthenticated, remote attacker to impersonate a Cisco Catalyst Center appliance. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a machine-in-the-middle attack on SSH connections, which could allow the attacker to intercept traffic between SSH clients and a Cisco Catalyst Center appliance. A successful exploit could allow the attacker to impersonate the affected appliance, inject commands into the terminal session, and steal valid user credentials.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Attack Vector Network
Attack Complexity High
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
EPSS Exploit Probability
30.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-321
Affected Products 86
| Vendor | Product | Version | Range |
|---|---|---|---|
| cisco | catalyst_center | 1.0.0 | any |
| cisco | catalyst_center | 1.4.0.0 | any |
| cisco | catalyst_center | 2.1.1.0 | any |
| cisco | catalyst_center | 2.1.1.3 | any |
| cisco | catalyst_center | 2.1.2.0 | any |
| cisco | catalyst_center | 2.1.2.3 | any |
| cisco | catalyst_center | 2.1.2.4 | any |
| cisco | catalyst_center | 2.1.2.5 | any |
| cisco | catalyst_center | 2.1.2.6 | any |
| cisco | catalyst_center | 2.1.2.7 | any |
| cisco | catalyst_center | 2.1.2.8 | any |
| cisco | catalyst_center | 2.2.1.0 | any |
| cisco | catalyst_center | 2.2.1.3 | any |
| cisco | catalyst_center | 2.2.2.0 | any |
| cisco | catalyst_center | 2.2.2.1 | any |
| cisco | catalyst_center | 2.2.2.3 | any |
| cisco | catalyst_center | 2.2.2.4 | any |
| cisco | catalyst_center | 2.2.2.5 | any |
| cisco | catalyst_center | 2.2.2.6 | any |
| cisco | catalyst_center | 2.2.2.7 | any |
| cisco | catalyst_center | 2.2.2.8 | any |
| cisco | catalyst_center | 2.2.2.9 | any |
| cisco | catalyst_center | 2.2.3.0 | any |
| cisco | catalyst_center | 2.2.3.3 | any |
| cisco | catalyst_center | 2.2.3.4 | any |
| cisco | catalyst_center | 2.2.3.5 | any |
| cisco | catalyst_center | 2.2.3.6 | any |
| cisco | catalyst_center | 2.3.2.1 | any |
| cisco | catalyst_center | 2.3.2.1-airgap | any |
| cisco | catalyst_center | 2.3.2.1-airgap-ca | any |
| cisco | catalyst_center | 2.3.2.3 | any |
| cisco | catalyst_center | 2.3.3.0 | any |
| cisco | catalyst_center | 2.3.3.0-airgap | any |
| cisco | catalyst_center | 2.3.3.1 | any |
| cisco | catalyst_center | 2.3.3.1-airgap | any |
| cisco | catalyst_center | 2.3.3.3 | any |
| cisco | catalyst_center | 2.3.3.3-airgap | any |
| cisco | catalyst_center | 2.3.3.3-airgap-ca | any |
| cisco | catalyst_center | 2.3.3.4 | any |
| cisco | catalyst_center | 2.3.3.4 | any |
| cisco | catalyst_center | 2.3.3.4-airgap | any |
| cisco | catalyst_center | 2.3.3.4-airgap-mdnac | any |
| cisco | catalyst_center | 2.3.3.5 | any |
| cisco | catalyst_center | 2.3.3.5-airgap | any |
| cisco | catalyst_center | 2.3.3.6 | any |
| cisco | catalyst_center | 2.3.3.6-70045 | any |
| cisco | catalyst_center | 2.3.3.6-airgap | any |
| cisco | catalyst_center | 2.3.3.6-airgap-mdnac | any |
| cisco | catalyst_center | 2.3.3.7 | any |
| cisco | catalyst_center | 2.3.3.7-72323 | any |
| cisco | catalyst_center | 2.3.3.7-72328-airgap | any |
| cisco | catalyst_center | 2.3.3.7-72328-mdnac | any |
| cisco | catalyst_center | 2.3.3.7-airgap | any |
| cisco | catalyst_center | 2.3.3.7-airgap-mdnac | any |
| cisco | catalyst_center | 2.3.4.0 | any |
| cisco | catalyst_center | 2.3.4.0-airgap | any |
| cisco | catalyst_center | 2.3.4.3 | any |
| cisco | catalyst_center | 2.3.4.3-airgap | any |
| cisco | catalyst_center | 2.3.5.0 | any |
| cisco | catalyst_center | 2.3.5.0-airgap | any |
| cisco | catalyst_center | 2.3.5.0-airgap-mdnac | any |
| cisco | catalyst_center | 2.3.5.3 | any |
| cisco | catalyst_center | 2.3.5.3-airgap | any |
| cisco | catalyst_center | 2.3.5.3-airgap-mdnac | any |
| cisco | catalyst_center | 2.3.5.4 | any |
| cisco | catalyst_center | 2.3.5.4-airgap | any |
| cisco | catalyst_center | 2.3.5.4-airgap-mdnac | any |
| cisco | catalyst_center | 2.3.5.5 | any |
| cisco | catalyst_center | 2.3.5.5-70026 | any |
| cisco | catalyst_center | 2.3.5.5-70026 | any |
| cisco | catalyst_center | 2.3.5.5-70026 | any |
| cisco | catalyst_center | 2.3.5.5-70026 | any |
| cisco | catalyst_center | 2.3.5.5-airgap | any |
| cisco | catalyst_center | 2.3.5.5-airgap-mdnac | any |
| cisco | catalyst_center | 2.3.6.0 | any |
| cisco | catalyst_center | 2.3.6.0-airgap | any |
| cisco | catalyst_center | 2.3.7.0 | any |
| cisco | catalyst_center | 2.3.7.0-airgap | any |
| cisco | catalyst_center | 2.3.7.0-airgap-mdnac | any |
| cisco | catalyst_center | 2.3.7.0-va | any |
| cisco | catalyst_center | 2.3.7.3 | any |
| cisco | catalyst_center | 2.3.7.3-airgap | any |
| cisco | catalyst_center | 2.3.7.3-airgap-mdnac | any |
| cisco | catalyst_center | 2.3.7.4 | any |
| cisco | catalyst_center | 2.3.7.4-airgap | any |
| cisco | catalyst_center | 2.3.7.4-airgap-mdnac | any |
References 1
- sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-ssh-e4uOdASj
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.