SynopsisA web application running on the remote host contains an authentication bypass vulnerability.
DescriptionThe version of Cisco Data Center Network Manager (DCNM) running on the remote web server is affected by an authentication bypass vulnerability that can lead to information disclosure. An unauthenticated, remote attacker can exploit this issue, by logging into specific sections of the web management interface with hardcoded credentials. The information revealed through this vulnerability may be used in combination with other vulnerabilities to achieve remote code execution.
SolutionUpgrade to Cisco Data Center Network Manager version 11.3(1) or later.