Cisco DNA Center Command Runner Command Injection Vulnerability
Description
A vulnerability in the Command Runner tool of Cisco DNA Center could allow an authenticated, remote attacker to perform a command injection attack. The vulnerability is due to insufficient input validation by the Command Runner tool. An attacker could exploit this vulnerability by providing crafted input during command execution or via a crafted command runner API call. A successful exploit could allow the attacker to execute arbitrary CLI commands on devices managed by Cisco DNA Center.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Cisco DNA Center Command Runner tool command injection allows authenticated remote attackers to execute arbitrary CLI commands on managed devices.
Vulnerability
The vulnerability exists in the Command Runner tool of Cisco DNA Center. It stems from insufficient input validation, allowing an authenticated remote attacker to inject arbitrary commands. The attacker can provide crafted input during command execution or via a crafted Command Runner API call. Affected versions are those prior to the fixed releases detailed in the Cisco Security Advisory [1].
Exploitation
An attacker must be authenticated to Cisco DNA Center. Exploitation involves sending specially crafted input to the Command Runner tool, either through the web interface or through API calls. No additional user interaction is required beyond authentication. The attacker can then execute arbitrary CLI commands on devices managed by Cisco DNA Center.
Impact
Successful exploitation enables the attacker to execute arbitrary CLI commands on managed devices. This can lead to full compromise of those devices, including information disclosure, unauthorized configuration changes, and potential denial of service. The attacker gains the privileges of the Command Runner tool, which typically has administrative access to managed devices.
Mitigation
Cisco has released free software updates that address this vulnerability, as noted in the Cisco Security Advisory [1]. Users should upgrade to the fixed versions specified in the advisory. No workarounds are available. Customers should consult the advisory for the exact version numbers and upgrade instructions.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Cisco/Cisco Digital Network Architecture Center (DNA Center)v5Range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-cmdinj-erumsWh9mitrevendor-advisoryx_refsource_CISCO
News mentions
0No linked articles in our index yet.