CVE-2024-20350

EUVD-2024-18065
A vulnerability in the SSH server of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an unauthenticated, remote attacker to impersonate a Cisco Catalyst Center appliance.

This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a machine-in-the-middle attack on SSH connections, which could allow the attacker to intercept traffic between SSH clients and a Cisco Catalyst Center appliance. A successful exploit could allow the attacker to impersonate the affected appliance, inject commands into the terminal session, and steal valid user credentials.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
CISA-ADPADP
7.5 HIGH
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 85%
Affected Products (NVD)
VendorProductVersion
ciscocatalyst_center
1.0.0
ciscocatalyst_center
1.4.0.0
ciscocatalyst_center
2.1.1.0
ciscocatalyst_center
2.1.1.3
ciscocatalyst_center
2.1.2.0
ciscocatalyst_center
2.1.2.3
ciscocatalyst_center
2.1.2.4
ciscocatalyst_center
2.1.2.5
ciscocatalyst_center
2.1.2.6
ciscocatalyst_center
2.1.2.7
ciscocatalyst_center
2.1.2.8
ciscocatalyst_center
2.2.1.0
ciscocatalyst_center
2.2.1.3
ciscocatalyst_center
2.2.2.0
ciscocatalyst_center
2.2.2.1
ciscocatalyst_center
2.2.2.3
ciscocatalyst_center
2.2.2.4
ciscocatalyst_center
2.2.2.5
ciscocatalyst_center
2.2.2.6
ciscocatalyst_center
2.2.2.7
ciscocatalyst_center
2.2.2.8
ciscocatalyst_center
2.2.2.9
ciscocatalyst_center
2.2.3.0
ciscocatalyst_center
2.2.3.3
ciscocatalyst_center
2.2.3.4
ciscocatalyst_center
2.2.3.5
ciscocatalyst_center
2.2.3.6
ciscocatalyst_center
2.3.2.1
ciscocatalyst_center
2.3.2.1-airgap
ciscocatalyst_center
2.3.2.1-airgap-ca
ciscocatalyst_center
2.3.2.3
ciscocatalyst_center
2.3.3.0
ciscocatalyst_center
2.3.3.0-airgap
ciscocatalyst_center
2.3.3.1
ciscocatalyst_center
2.3.3.1-airgap
ciscocatalyst_center
2.3.3.3
ciscocatalyst_center
2.3.3.3-airgap
ciscocatalyst_center
2.3.3.3-airgap-ca
ciscocatalyst_center
2.3.3.4
ciscocatalyst_center
2.3.3.4:hotfix1
ciscocatalyst_center
2.3.3.4-airgap
ciscocatalyst_center
2.3.3.4-airgap-mdnac
ciscocatalyst_center
2.3.3.5
ciscocatalyst_center
2.3.3.5-airgap
ciscocatalyst_center
2.3.3.6
ciscocatalyst_center
2.3.3.6-70045:hotfix1
ciscocatalyst_center
2.3.3.6-airgap
ciscocatalyst_center
2.3.3.6-airgap-mdnac
ciscocatalyst_center
2.3.3.7
ciscocatalyst_center
2.3.3.7-72323
ciscocatalyst_center
2.3.3.7-72328-airgap
ciscocatalyst_center
2.3.3.7-72328-mdnac
ciscocatalyst_center
2.3.3.7-airgap
ciscocatalyst_center
2.3.3.7-airgap-mdnac
ciscocatalyst_center
2.3.4.0
ciscocatalyst_center
2.3.4.0-airgap
ciscocatalyst_center
2.3.4.3
ciscocatalyst_center
2.3.4.3-airgap
ciscocatalyst_center
2.3.5.0
ciscocatalyst_center
2.3.5.0-airgap
ciscocatalyst_center
2.3.5.0-airgap-mdnac
ciscocatalyst_center
2.3.5.3
ciscocatalyst_center
2.3.5.3-airgap
ciscocatalyst_center
2.3.5.3-airgap-mdnac
ciscocatalyst_center
2.3.5.4
ciscocatalyst_center
2.3.5.4-airgap
ciscocatalyst_center
2.3.5.4-airgap-mdnac
ciscocatalyst_center
2.3.5.5
ciscocatalyst_center
2.3.5.5-70026:hotfix51
ciscocatalyst_center
2.3.5.5-70026:hotfix52
ciscocatalyst_center
2.3.5.5-70026:hotfix53
ciscocatalyst_center
2.3.5.5-70026:hotfix70
ciscocatalyst_center
2.3.5.5-airgap
ciscocatalyst_center
2.3.5.5-airgap-mdnac
ciscocatalyst_center
2.3.6.0
ciscocatalyst_center
2.3.6.0-airgap
ciscocatalyst_center
2.3.7.0
ciscocatalyst_center
2.3.7.0-airgap
ciscocatalyst_center
2.3.7.0-airgap-mdnac
ciscocatalyst_center
2.3.7.0-va
ciscocatalyst_center
2.3.7.3
ciscocatalyst_center
2.3.7.3-airgap
ciscocatalyst_center
2.3.7.3-airgap-mdnac
ciscocatalyst_center
2.3.7.4
ciscocatalyst_center
2.3.7.4-airgap
ciscocatalyst_center
2.3.7.4-airgap-mdnac
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
ciscodigital_network_architecture_center
1.4.0.0
ADP
Common Weakness Enumeration
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-ssh-e4uOdASj