|
199511
|
5.4 |
MEDIUM
Network
|
cisco
|
prime_infrastructure
|
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. The vulnerabi…
|
CWE-89
SQL Injection
|
CVE-2020-3339
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199512
|
9.8 |
CRITICAL
Network
|
cisco
|
ios
|
Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an una…
|
NVD-CWE-Other
|
CVE-2020-3258
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199513
|
5.5 |
MEDIUM
Local
|
cisco
|
application_services_engine
application_policy_infrastructure_controller
|
A vulnerability in the key store of Cisco Application Services Engine Software could allow an authenticated, local attacker to read sensitive information of other users on an affected device. The vul…
|
CWE-863
Incorrect Authorization
|
CVE-2020-3335
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199514
|
5.3 |
MEDIUM
Network
|
cisco
|
application_services_engine
application_policy_infrastructure_controller
|
A vulnerability in the API of Cisco Application Services Engine Software could allow an unauthenticated, remote attacker to update event policies on an affected device. The vulnerability is due to in…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-3333
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199515
|
8.8 |
HIGH
Network
|
cisco
|
digital_network_architecture_center
|
A vulnerability in the audit logging component of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to view sensitive information in clear text. The vulner…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-3281
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199516
|
7.1 |
HIGH
Network
|
cisco
|
unified_contact_center_express
|
A vulnerability in the API subsystem of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to change the availability state of any agent. The vulnerabili…
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2020-3267
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199517
|
8.1 |
HIGH
Adjacent
|
cisco
|
ios
|
Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-3257
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199518
|
8.1 |
HIGH
Network
|
cisco
|
iox
|
A vulnerability in the Cisco Application Framework component of the Cisco IOx application environment could allow an authenticated, remote attacker to write or modify arbitrary files in the virtual i…
|
CWE-20
Improper Input Validation
|
CVE-2020-3238
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199519
|
6.3 |
MEDIUM
Local
|
cisco
|
iox
|
A vulnerability in the Cisco Application Framework component of the Cisco IOx application environment could allow an authenticated, local attacker to overwrite arbitrary files in the virtual instance…
|
CWE-59
Link Following
|
CVE-2020-3237
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199520
|
6.7 |
MEDIUM
Local
|
cisco
|
ios_xe
|
A vulnerability in the Virtual Services Container of Cisco IOS XE Software could allow an authenticated, local attacker to gain root-level privileges on an affected device. The vulnerability is due t…
|
CWE-20
Improper Input Validation
|
CVE-2020-3215
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
