CNNVD-202511-1586 Information

CNNVD ID

CNNVD-202511-1586

Related CVE

CVE-2025-20355

• CNNVD Published: 2025-11-13

Description (Chinese)

Cisco Catalyst Center Virtual Appliance是美国思科（Cisco）公司的一个网络控制器和自动化管理平台。 Cisco Catalyst Center Virtual Appliance存在输入验证错误漏洞，该漏洞源于基于Web管理界面HTTP请求参数验证不当，可能导致重定向至恶意网页。

Description (English)

Cisco Catallyst Center Virgin Application is a network controller and automated management platform for Cisco Corporation. Cisco Catallyst Center Virtual Application has an input validation error that stems from the incorrect validation of HTTP request parameters based on the Web management interface and may lead to a redirection to malicious web pages.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

思科

Published

2025-11-13

Last Modified

2026-02-24

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-catc-open-redirect-3W5Bk3Je https://access.redhat.com/security/cve/cve-2025-20355

Patch

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-catc-open-redirect-3W5Bk3Je