CVE-2020-26076

A vulnerability in Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to view sensitive database information on an affected device. The vulnerability is due to the absence of authentication for sensitive information. An attacker could exploit this vulnerability by sending crafted curl commands to an affected device. A successful exploit could allow the attacker to view sensitive database information on the affected device.
Configurations

Configuration 1 (hide)

cpe:2.3:a:cisco:iot_field_network_director:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-11-18 18:15

Updated : 2024-02-28 18:08


NVD link : CVE-2020-26076

Mitre link : CVE-2020-26076

CVE.ORG link : CVE-2020-26076


JSON object : View

Products Affected

cisco

  • iot_field_network_director
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-497

Exposure of Sensitive System Information to an Unauthorized Control Sphere