{“lastseen”:””,”description”:”A vulnerability in Cisco Catalyst Center could allow an authenticated, remote attacker to execute operations that should require Administrator privileges. The attacker would need valid read-only user credentials.\\r\\n\\r\\nThis vulnerability is due to improper role-based access control (RBAC). An attacker could exploit this vulnerability by logging in to an affected system and modifying certain policy configurations. A successful exploit could allow the attacker to modify policy configurations that are reserved for the Administrator role. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Observer.”,”published”:”2025-11-13T16:27:30.871Z”,”modified”:”2025-11-13T16:27:30.871Z”,”type”:”cve”,”title”:”Cisco Catalyst Center Privilege Escalation Vulnerability”,”source”:”cisco”,”references”:”https:\/\/sec.cloudapps.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-privesc-catc-rYjReeLU”,”id”:”CVE-2025-20346″,”bulletinFamily”:””,”cwe”:null,”cvelist”:null,”sourceData”:”Cisco Cisco Digital Network Architecture Center (DNA Center) 2.1.1.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.1.1.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.1.2.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.1.2.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.1.2.5\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.1.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.1.2.6\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.2.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.2.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.1.2.7\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.1.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.3.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.2.4\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.2.5\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.3.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.2.7\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.2.6\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.2.8\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.3.4\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.2.1\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.2.1-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.2.1-AIRGAP-CA\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.3.5\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.1-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.1\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.2.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.3-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.2.2.9\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.0-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.4\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.4-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.4-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.5\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.5-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.4.0-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.4.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.4.3-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.6\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.6-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.6-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.0-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) VA Launchpad 1.0.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) VA Launchpad 1.0.4\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.7\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.7-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.7-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.6.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.6-70045-HF1\\nCisco Cisco Digital Network Architecture Center (DNA Center) VA Launchpad 1.2.1\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.7-72328-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.7-72323\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.3.7-72328-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.3-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.3-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.6.0-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) VA Launchpad 1.3.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) VA Launchpad 1.5.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.0-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.0-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.0-VA\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.4-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.4-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) VA Launchpad 1.6.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.3\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.3-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.3-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) VA Launchpad 1.7.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.5-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.5\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.5-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.4\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.4-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.5-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) VA Launchpad 1.9.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.6-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.6-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) 1.0.0.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) Cisco CCGM 1.0.0.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.6-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.6\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.6-VA\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.5-70026-HF70\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.5-70026-HF51\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.6-70143-HF20\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.6-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.5-70026-HF53\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.5-70026-HF71\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.7\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.7-VA\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.7-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.7-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.9-VA\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.9\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.9-AIRGAP\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.9-AIRGAP-MDNAC\\nCisco Cisco Digital Network Architecture Center (DNA Center) Cisco CCGM 1.1.1\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.9-70301-GSMU10\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.9-70301-SMU1\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.9-75403-SMU10\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.9-75403-GSMU10\\nCisco Cisco Digital Network Architecture Center (DNA Center) Cisco CCGM 1.2.1\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.5.3-EULA\\nCisco Cisco Digital Network Architecture Center (DNA Center) 2.3.7.9.75403.10-VA\\nCisco Cisco Digital Network Architecture Center (DNA Center) 0.0.0.0\\nCisco Cisco Digital Network Architecture Center (DNA Center) 1.16.54″,”sourceHref”:””,”cvss”:{“score”:4.3,”severity”:”MEDIUM”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:N\/S:U\/C:N\/I:L\/A:N”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Cisco Digital Network Architecture Center (DNA Center)”,”version”:”2.1.1.0″,”vendor”:”Cisco”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”A vulnerability in Cisco Catalyst Center could allow an authenticated, remote attacker to execute operations that should require Administrator privileges. The attacker would need valid…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,123,12,21,13,7,11,5],"class_list":["post-26162","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-43","tag-exploit","tag-medium","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n