|
201941
|
8.1 |
HIGH
Network
|
cisco
|
identity_services_engine
|
A vulnerability in the REST API of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to perform a command injection attack and elevate privileges to root. This vuln…
|
CWE-78
OS Command
|
CVE-2021-1594
|
2024-11-21 14:44 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201942
|
5.3 |
MEDIUM
Network
|
cisco
|
asyncos
|
A vulnerability in the antispam protection mechanisms of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation f…
|
NVD-CWE-noinfo
|
CVE-2021-1534
|
2024-11-21 14:44 |
2021-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201943
|
9.1 |
CRITICAL
Network
|
cisco
|
ios_xe
ios_xe_sd-wan
ios_xe_sd-wan_16.12.2r_when_installed_on_1000_series_integrated_services
ios_xe_sd-wan_16.11.1s_when_installed_on_1000_series_integrated_services
ios_xe_sd-wan_16.11.…
|
A vulnerability in the authentication, authorization, and accounting (AAA) function of Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass NETCONF or RESTCONF authenticati…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2021-1619
|
2024-11-21 14:44 |
2021-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201944
|
7.1 |
HIGH
Local
|
cisco
|
sd-wan
|
A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local attacker to overwrite arbitrary files on the local system. This vulnerability is due to improper access con…
|
CWE-59
Link Following
|
CVE-2021-1612
|
2024-11-21 14:44 |
2021-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201945
|
5.8 |
MEDIUM
Network
|
cisco
|
ios_xe
|
A vulnerability in the Zone-Based Policy Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to prevent the Zone-Based Policy Firewall from correctly classifying…
|
NVD-CWE-Other
|
CVE-2021-1625
|
2024-11-21 14:44 |
2021-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201946
|
8.6 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the Rate Limiting Network Address Translation (NAT) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause high CPU utilization in the Cisco Quan…
|
NVD-CWE-Other
|
CVE-2021-1624
|
2024-11-21 14:44 |
2021-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201947
|
7.7 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the Simple Network Management Protocol (SNMP) punt handling function of Cisco cBR-8 Converged Broadband Routers could allow an authenticated, remote attacker to overload a device p…
|
NVD-CWE-noinfo
|
CVE-2021-1623
|
2024-11-21 14:44 |
2021-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201948
|
8.6 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the Common Open Policy Service (COPS) of Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers could allow an unauthenticated, remote attacker to cause resource exhaust…
|
CWE-667
Improper Locking
|
CVE-2021-1622
|
2024-11-21 14:44 |
2021-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201949
|
7.4 |
HIGH
Adjacent
|
cisco
|
ios_xe
|
A vulnerability in the Layer 2 punt code of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a queue wedge on an interface that receives specific Layer 2 frames, resul…
|
NVD-CWE-noinfo
|
CVE-2021-1621
|
2024-11-21 14:44 |
2021-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201950
|
7.7 |
HIGH
Network
|
cisco
|
ios
ios_xe
|
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) support for the AutoReconnect feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to e…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2021-1620
|
2024-11-21 14:44 |
2021-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
