Cisco Digital Network Architecture Center Information Disclosure Vulnerability
Description
A vulnerability in the audit logging component of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensitive information in clear text. The vulnerability is due to the storage of certain unencrypted credentials. An attacker could exploit this vulnerability by accessing the audit logs and obtaining credentials that they may not normally have access to. A successful exploit could allow the attacker to use those credentials to discover and manage network devices.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Cisco DNA Center audit logging stores unencrypted credentials, allowing authenticated attackers to view sensitive data via audit logs.
Vulnerability
A vulnerability in the audit logging component of Cisco Digital Network Architecture (DNA) Center stores certain credentials in clear text. Affected versions are those earlier than Release 1.3.3.3. [1]
Exploitation
An authenticated, remote attacker can exploit this vulnerability by accessing the audit logs, where unencrypted credentials are stored, to obtain credentials they would not normally have access to. [1]
Impact
Successful exploitation allows the attacker to view sensitive credential information, which can then be used to discover and manage network devices, potentially leading to further compromise. [1]
Mitigation
Cisco has released software updates that address this vulnerability. The fix is included in Cisco DNA Center Release 1.3.3.3 and later. No workarounds are available. [1]
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-audit-log-59RBdwb6mitrevendor-advisoryx_refsource_CISCO
News mentions
0No linked articles in our index yet.