Cisco DNA Center Information Disclosure Vulnerability
Description
A vulnerability in the configuration archive functionality of Cisco DNA Center could allow any privilege-level authenticated, remote attacker to obtain the full unmasked running configuration of managed devices. The vulnerability is due to the configuration archives files being stored in clear text, which can be retrieved by various API calls. An attacker could exploit this vulnerability by authenticating to the device and executing a series of API calls. A successful exploit could allow the attacker to retrieve the full unmasked running configurations of managed devices.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Cisco DNA Center stores configuration archives in clear text, allowing authenticated remote attackers to retrieve full unmasked running configurations of managed devices.
Vulnerability
A vulnerability in the configuration archive functionality of Cisco DNA Center allows any privilege-level authenticated, remote attacker to obtain the full unmasked running configuration of managed devices. The issue stems from configuration archive files being stored in clear text, which can be retrieved via API calls. This affects Cisco DNA Center deployments where the configuration archive feature is enabled. The specific affected versions are detailed in the Cisco Security Advisory [1].
Exploitation
An attacker must have valid credentials to authenticate to Cisco DNA Center at any privilege level. No additional user interaction is required. The attacker then executes a series of API calls to retrieve the stored configuration archive files, which are in clear text. The exact API endpoints are not publicly detailed but are accessible to authenticated users.
Impact
Successful exploitation allows the attacker to retrieve the full unmasked running configurations of managed devices. This results in significant information disclosure, exposing sensitive network device settings, credentials, and other configuration details that could be used for further attacks.
Mitigation
Cisco has released software updates to fix this vulnerability. Customers should upgrade to the fixed versions specified in the Cisco Security Advisory [1]. No workarounds are available. The vulnerability is not listed on the CISA Known Exploited Vulnerabilities (KEV) catalog as of the publication date.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Cisco/Cisco Digital Network Architecture Center (DNA Center)v5Range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnacid-OfeeRjcnmitrevendor-advisoryx_refsource_CISCO
News mentions
0No linked articles in our index yet.