PT-2025-23819 · Cisco · Cisco Nexus Dashboard Fabric Controller
Harm Blankers
+2
·
Published
2025-06-04
·
Updated
2025-07-27
·
CVE-2025-20163
CVSS v3.1
8.7
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Cisco Nexus Dashboard Fabric Controller (NDFC) versions prior to 12.2.3
Description
A vulnerability exists in the SSH implementation of Cisco Nexus Dashboard Fabric Controller (NDFC) due to insufficient SSH host key validation. This allows an unauthenticated, remote attacker to perform a machine-in-the-middle (MitM) attack on SSH connections to Cisco NDFC-managed devices. A successful exploit could allow the attacker to intercept traffic and impersonate a managed device, potentially capturing user credentials.
Recommendations
Update Cisco Nexus Dashboard Fabric Controller (NDFC) to version 12.2.3 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Nexus Dashboard Fabric Controller