|
197971
|
6.1 |
MEDIUM
Network
|
cisco
|
webex_meetings_online
|
A vulnerability in the web-based management interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3463
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197972
|
4.3 |
MEDIUM
Network
|
cisco
|
ios_xr
|
A vulnerability in the Border Gateway Protocol (BGP) additional paths feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to prevent authorized users from monitoring the …
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2020-3449
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197973
|
5.8 |
MEDIUM
Network
|
cisco
|
cyber_vision_center
|
A vulnerability in an access control mechanism of Cisco Cyber Vision Center Software could allow an unauthenticated, remote attacker to bypass authentication and access internal services that are run…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-3448
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197974
|
6.5 |
MEDIUM
Network
|
cisco
|
content_security_management_appliance
email_security_appliance
|
A vulnerability in the CLI of Cisco AsyncOS for Cisco Email Security Appliance (ESA) and Cisco AsyncOS for Cisco Content Security Management Appliance (SMA) could allow an authenticated, remote attac…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-3447
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197975
|
5.5 |
MEDIUM
Local
|
cisco
|
anyconnect_secure_mobility_client
|
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to overwrite VPN profiles on an aff…
|
CWE-20
Improper Input Validation
|
CVE-2020-3435
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197976
|
5.5 |
MEDIUM
Local
|
cisco
|
anyconnect_secure_mobility_client
|
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to cause a denial of service (DoS) …
|
CWE-20
Improper Input Validation
|
CVE-2020-3434
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197977
|
7.8 |
HIGH
Local
|
cisco
|
anyconnect_secure_mobility_client
|
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack. …
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2020-3433
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197978
|
9.8 |
CRITICAL
Network
|
qualcomm
|
-
|
Authenticated and encrypted payload MMEs can be forged and remotely sent to any HPAV2 system using a jailbreak key recoverable from code.
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2020-3681
|
2024-11-21 14:31 |
2020-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197979
|
6.3 |
MEDIUM
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system.…
|
CWE-89
SQL Injection
|
CVE-2020-3462
|
2024-11-21 14:31 |
2020-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197980
|
5.3 |
MEDIUM
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to obtain confidential information from an affected d…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-3461
|
2024-11-21 14:31 |
2020-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
