|
198191
|
8.8 |
HIGH
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the session validation feature of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side reque…
|
-
|
CVE-2021-1272
|
2024-11-21 14:43 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198192
|
4.8 |
MEDIUM
Network
|
cisco
|
web_security_virtual_appliance
|
A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (X…
|
-
|
CVE-2021-1271
|
2024-11-21 14:43 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198193
|
6.5 |
MEDIUM
Network
|
cisco
|
dna_center
|
A vulnerability in the configuration archive functionality of Cisco DNA Center could allow any privilege-level authenticated, remote attacker to obtain the full unmasked running configuration of mana…
|
-
|
CVE-2021-1265
|
2024-11-21 14:43 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198194
|
6.5 |
MEDIUM
Network
|
cisco
|
sd-wan_vmanage
|
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain write access to sensi…
|
-
|
CVE-2021-1259
|
2024-11-21 14:43 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198195
|
8.8 |
HIGH
Network
|
cisco
mcafee
|
dna_center
agent
|
A vulnerability in the web-based management interface of Cisco DNA Center Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack to manipulate …
|
CWE-352
Origin Validation Error
|
CVE-2021-1257
|
2024-11-21 14:43 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198196
|
5.3 |
MEDIUM
Network
|
cisco
|
content_security_management_appliance
web_security_appliance
email_security_appliance
|
A vulnerability in the authentication for the general purpose APIs implementation of Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security Ap…
|
-
|
CVE-2021-1129
|
2024-11-21 14:43 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198197
|
4.3 |
MEDIUM
Network
|
cisco
|
connected_mobile_experiences
|
A vulnerability in Cisco Connected Mobile Experiences (CMX) API authorizations could allow an authenticated, remote attacker to enumerate what users exist on the system. The vulnerability is due to a…
|
CWE-862
Missing Authorization
|
CVE-2021-1143
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198198
|
4.3 |
MEDIUM
Network
|
cisco
|
firepower_management_center
|
A vulnerability in the dashboard widget of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected d…
|
CWE-776
XML Entity Expansion
|
CVE-2021-1267
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198199
|
5.5 |
MEDIUM
Local
|
cisco
mcafee
|
anyconnect_secure_mobility_client
agent_epolicy_orchestrator_extension
|
A vulnerability in the upgrade component of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker with low privileges to read arbitrary files on the underlying operatin…
|
CWE-269
Improper Privilege Management
|
CVE-2021-1258
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198200
|
6.1 |
MEDIUM
Network
|
cisco
|
finesse
|
Cisco Finesse, Cisco Virtualized Voice Browser, and Cisco Unified CVP OpenSocial Gadget Editor Unauthenticated Access Vulnerability
A vulnerability in the web management interface of Cisco Finesse…
|
CWE-79
Cross-site Scripting
|
CVE-2021-1246
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
