CVE-2018-0448

Name of the Vulnerable Software and Affected Versions Cisco Digital Network Architecture (DNA) Center (affected versions not specified)

Description The issue is related to insufficient security restrictions for critical management functions in the identity management service. This could allow a remote attacker to bypass authentication and gain control over identity management functions. An attacker could exploit this by sending a valid identity management request to the affected system, potentially allowing them to view and make unauthorized modifications to existing system users, as well as create new users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.