CVE-2025-20118— Cisco APIC 安全漏洞

Cisco Application Policy Infrastructure Controller Authenticated Command Injection Due to Sensitive Disclosure Vulnerability

A vulnerability in the implementation of the internal system processes of Cisco APIC could allow an authenticated, local attacker to access sensitive information on an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to insufficient masking of sensitive information that is displayed through system CLI commands. An attacker could exploit this vulnerability by using reconnaissance techniques at the device CLI. A successful exploit could allow the attacker to access sensitive information on an affected device that could be used for additional attacks.

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

敏感数据的不恰当跨边界移除

Cisco APIC 安全漏洞

Cisco APIC是美国思科（Cisco）公司的一款用于 Cisco ACI 交换矩阵自动化和管理的软件。可进行策略实施、健康监控、网络配置等。 Cisco APIC存在安全漏洞，该漏洞源于系统CLI命令中敏感信息未充分屏蔽，允许本地认证用户访问敏感信息。

N/A

N/A