|
200501
|
7.1 |
HIGH
Network
|
cisco
|
unified_contact_center_express
|
A vulnerability in the API subsystem of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to change the availability state of any agent. The vulnerabili…
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2020-3267
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200502
|
8.1 |
HIGH
Adjacent
|
cisco
|
ios
|
Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-3257
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200503
|
8.1 |
HIGH
Network
|
cisco
|
iox
|
A vulnerability in the Cisco Application Framework component of the Cisco IOx application environment could allow an authenticated, remote attacker to write or modify arbitrary files in the virtual i…
|
CWE-20
Improper Input Validation
|
CVE-2020-3238
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200504
|
6.3 |
MEDIUM
Local
|
cisco
|
iox
|
A vulnerability in the Cisco Application Framework component of the Cisco IOx application environment could allow an authenticated, local attacker to overwrite arbitrary files in the virtual instance…
|
CWE-59
Link Following
|
CVE-2020-3237
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200505
|
6.7 |
MEDIUM
Local
|
cisco
|
ios_xe
|
A vulnerability in the Virtual Services Container of Cisco IOS XE Software could allow an authenticated, local attacker to gain root-level privileges on an affected device. The vulnerability is due t…
|
CWE-20
Improper Input Validation
|
CVE-2020-3215
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200506
|
6.7 |
MEDIUM
Local
|
cisco
|
ios_xe
|
A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to escalate their privileges to a user with root-level privileges. The vulnerability is due to insufficient valid…
|
CWE-20
Improper Input Validation
|
CVE-2020-3214
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200507
|
7.7 |
HIGH
Network
|
cisco
oracle
|
ios
ios_xe
goldengate_management_pack
|
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software and Cisco IOS XE Software on Catalyst 4500 Series Switches could allow an authenticated, remote attack…
|
CWE-20
Improper Input Validation
|
CVE-2020-3235
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200508
|
8.8 |
HIGH
Local
|
cisco
|
ios
|
A vulnerability in the virtual console authentication of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-3234
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200509
|
5.4 |
MEDIUM
Network
|
cisco
|
iox
|
A vulnerability in the web-based Local Manager interface of the Cisco IOx Application Framework could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack aga…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3233
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200510
|
7.7 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the Simple Network Management Protocol (SNMP) implementation in Cisco ASR 920 Series Aggregation Services Router model ASR920-12SZ-IM could allow an authenticated, remote attacker …
|
NVD-CWE-noinfo
|
CVE-2020-3232
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
