|
1071
|
6.0 |
MEDIUM
Local
|
-
|
-
|
A vulnerability in the TL1 function of Cisco Network Convergence System (NCS) 4000 Series could allow an authenticated, local attacker to cause a memory leak in the TL1 process.
This vulnerabil…
Update
|
CWE-789
Memory Allocation with Excessive Size Value
|
CVE-2022-20845
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1072
|
7.4 |
HIGH
Network
|
-
|
-
|
A vulnerability in the certificate validation of Cisco Expressway-C and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data.…
Update
|
CWE-295
Improper Certificate Validation
|
CVE-2022-20814
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1073
|
6.8 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in pairing process of Cisco TelePresence CE Software and RoomOS Software for Cisco Touch 10 Devices could allow an unauthenticated, remote attacker to impersonate a legitima…
Update
|
CWE-325
Missing Required Cryptographic Step
|
CVE-2022-20793
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1074
|
5.3 |
MEDIUM
Network
-
|
-
|
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Adaptive Telephone Adapter firmware could allow an unauthenticated, remote attacker to cause a DoS cond…
Update
|
CWE-125
Out-of-bounds Read
|
CVE-2022-20766
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1075
|
7.5 |
HIGH
Network
-
|
-
|
A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
This vuln…
Update
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2022-20685
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1076
|
6.1 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco Secure Network Analytics, formerly Stealthwatch Enterprise, could allow an unauthenticated, remote attacker to conduct a cross-site…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2022-20663
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1077
|
- |
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface of …
Update
|
CWE-79
Cross-site Scripting
|
CVE-2022-20657
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1078
|
6.5 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could allow an authenticated, remote attacker to conduct a path traversal attack on an affected device. To e…
Update
|
CWE-24
Path Traversal: '../filedir'
|
CVE-2022-20656
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1079
|
6.1 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based …
Update
|
CWE-80
Basic XSS
|
CVE-2022-20654
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1080
|
6.5 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based management interface and in the API subsystem of Cisco Tetration could allow an authenticated, remote attacker to inject arbitrary commands to be executed with r…
Update
|
CWE-78
OS Command
|
CVE-2022-20652
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
