Unrated severityNVD Advisory· Published May 7, 2025· Updated May 7, 2025

Cisco Catalyst Center Unprotected API Endpoint

CVE-2025-20210

Description

A vulnerability in the management API of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an unauthenticated, remote attacker to read and modify the outgoing proxy configuration settings.

This vulnerability is due to the lack of authentication in an API endpoint. An attacker could exploit this vulnerability by sending a request to the affected API of a Catalyst Center device. A successful exploit could allow the attacker to view or modify the outgoing proxy configuration, which could disrupt internet traffic from Cisco Catalyst Center or may allow the attacker to intercept outbound internet traffic.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

An unauthenticated API endpoint in Cisco Catalyst Center allows remote attackers to read or modify outgoing proxy settings, potentially disrupting or intercepting internet traffic.

Vulnerability

The vulnerability exists in the management API of Cisco Catalyst Center (formerly Cisco DNA Center). An API endpoint lacks authentication, allowing an unauthenticated, remote attacker to read and modify the outgoing proxy configuration settings [1]. Affected versions are those prior to the fixed release; the advisory indicates free software updates are available.

Exploitation

An attacker can exploit this vulnerability by sending a crafted request to the affected API endpoint of a Catalyst Center device. No authentication is required, and the attacker does not need prior access to the network beyond network connectivity to the device.

Impact

Successful exploitation allows the attacker to view or modify the outgoing proxy configuration. This could disrupt internet traffic from Cisco Catalyst Center or allow the attacker to intercept outbound internet traffic, leading to potential information disclosure or traffic manipulation.

Mitigation

Cisco has released free software updates to address this vulnerability. Customers should upgrade to the fixed version as indicated in the Cisco Security Advisory [1]. No workarounds are mentioned; customers with service contracts should obtain updates through their usual channels.

References

Cisco Security Advisory: Cisco Catalyst Center Unauthenticated API Access Vulnerability

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Cisco Systems, Inc./Catalystllm-fuzzy
Cisco Systems, Inc./Digital Network Architecture Center (DNA Center)cpe-rescue
Range: 2.1.1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-api-nBPZcJCMmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000