Cisco Nexus Dashboard LDAP Username Enumeration Vulnerability

A vulnerability in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to enumerate LDAP user accounts. This vulnerability is due to the improper handling of LDAP authentication requests. An attacker could exploit this vulnerability by sending authentication requests to an affected system. A successful exploit could allow an attacker to determine which usernames are valid LDAP user accounts. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nd-unenum-2xFFh472 Security Impact Rating: Medium CVE: CVE-2025-20150
http://news.poseidon-us.com/TKBrSk

Cisco Nexus Dashboard LDAP Username Enumeration Vulnerability

Like this:

Related

More Posts

Trump administration estimates 50,000 federal employees will lose civil service protections

Trump administration estimates 50,000 federal employees will lose civil service protections

IRS axes flexible work schedules, rejects many ‘deferred resignation’ applications

Upskill your team on Azure Databricks with an on-demand webinar and Microsoft Learn

o3 and o4-mini: Unlock enterprise agent workflows with next-level reasoning AI with Azure AI Foundry and GitHub

When Vulnerability Information Flows are Vulnerable Themselves

Agencies will still see strict limits on recruitment once hiring freeze expires in July

Agencies will still see strict limits on recruitment once hiring freeze expires in July

TSA tests out AI to train, assist airport screening officers

TSA tests out AI to train, assist airport screening officers

Share this:

Like this:

Related

More Posts