Cisco has released a security advisory addressing a vulnerability in Prime Data Center Network Manager (DCNM). Cisco Prime Data Center Network Manager, previously known as Cisco Data Center Network Manager, is a network management application that combines the management of Ethernet and storage networks into a single dashboard to help network and storage administrators manage and troubleshoot health and performance across different families of Cisco products that run Cisco NX-OS Software. To exploit this vulnerability, an attacker would send arbitrary commands via RMI services to a target system. If successfully exploited, the attacker would gain the ability to execute arbitrary commands on the affected system.<br><br>
At this time, there is a known exploit associated with the JBoss configuration which causes this vulnerability; USCYBERCOM is not aware of any DoD related incidents.<br><br> |