|
201611
|
7.5 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the DNS application layer gateway (ALG) functionality used by Network Address Translation (NAT) in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an…
|
-
|
CVE-2021-1446
|
2024-11-21 14:44 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201612
|
7.2 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to execute arbitrary code with root privileges on the underlying operating system of an affected d…
|
CWE-78
OS Command
|
CVE-2021-1443
|
2024-11-21 14:44 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201613
|
7.8 |
HIGH
Local
|
cisco
|
ios_xe
|
A vulnerability in a diagnostic command for the Plug-and-Play (PnP) subsystem of Cisco IOS XE Software could allow an authenticated, local attacker to elevate privileges to the level of an Administra…
|
-
|
CVE-2021-1442
|
2024-11-21 14:44 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201614
|
6.7 |
MEDIUM
Local
|
cisco
|
ios_xe
|
A vulnerability in the hardware initialization routines of Cisco IOS XE Software for Cisco 1100 Series Industrial Integrated Services Routers and Cisco ESR6300 Embedded Series Routers could allow an …
|
CWE-78
OS Command
|
CVE-2021-1441
|
2024-11-21 14:44 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201615
|
7.4 |
HIGH
Adjacent
|
cisco
|
aironet_access_point_software
catalyst_9800_firmware
|
A vulnerability in the multicast DNS (mDNS) gateway feature of Cisco Aironet Series Access Points Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) conditi…
|
-
|
CVE-2021-1439
|
2024-11-21 14:44 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201616
|
7.5 |
HIGH
Network
|
cisco
|
aironet_access_point_software
catalyst_9800_firmware
wireless_lan_controller_software
|
A vulnerability in the FlexConnect Upgrade feature of Cisco Aironet Series Access Points Software could allow an unauthenticated, remote attacker to obtain confidential information from an affected d…
|
NVD-CWE-Other
|
CVE-2021-1437
|
2024-11-21 14:44 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201617
|
8.1 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected device. This vulnerability is due to i…
|
-
|
CVE-2021-1433
|
2024-11-21 14:44 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201618
|
7.3 |
HIGH
Local
|
cisco
|
ios_xe
ios_xe_sd-wan
|
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker…
|
CWE-74
Injection
|
CVE-2021-1432
|
2024-11-21 14:44 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201619
|
7.4 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site WebSocket hijacking (CSWSH) attack and cause a denial of service…
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2021-1403
|
2024-11-21 14:44 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201620
|
6.8 |
MEDIUM
Physics
|
cisco
|
ios_xe
|
A vulnerability in the boot logic of Cisco IOS XE Software could allow an authenticated, local attacker with level 15 privileges or an unauthenticated attacker with physical access to execute arbitra…
|
-
|
CVE-2021-1398
|
2024-11-21 14:44 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
