|
197591
|
5.8 |
MEDIUM
Network
|
cisco
|
cyber_vision_center
|
A vulnerability in an access control mechanism of Cisco Cyber Vision Center Software could allow an unauthenticated, remote attacker to bypass authentication and access internal services that are run…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-3448
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197592
|
6.5 |
MEDIUM
Network
|
cisco
|
content_security_management_appliance
email_security_appliance
|
A vulnerability in the CLI of Cisco AsyncOS for Cisco Email Security Appliance (ESA) and Cisco AsyncOS for Cisco Content Security Management Appliance (SMA) could allow an authenticated, remote attac…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-3447
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197593
|
5.5 |
MEDIUM
Local
|
cisco
|
anyconnect_secure_mobility_client
|
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to overwrite VPN profiles on an aff…
|
CWE-20
Improper Input Validation
|
CVE-2020-3435
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197594
|
5.5 |
MEDIUM
Local
|
cisco
|
anyconnect_secure_mobility_client
|
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to cause a denial of service (DoS) …
|
CWE-20
Improper Input Validation
|
CVE-2020-3434
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197595
|
7.8 |
HIGH
Local
|
cisco
|
anyconnect_secure_mobility_client
|
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack. …
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2020-3433
|
2024-11-21 14:31 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197596
|
9.8 |
CRITICAL
Network
|
qualcomm
|
-
|
Authenticated and encrypted payload MMEs can be forged and remotely sent to any HPAV2 system using a jailbreak key recoverable from code.
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2020-3681
|
2024-11-21 14:31 |
2020-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197597
|
6.3 |
MEDIUM
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system.…
|
CWE-89
SQL Injection
|
CVE-2020-3462
|
2024-11-21 14:31 |
2020-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197598
|
5.3 |
MEDIUM
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to obtain confidential information from an affected d…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-3461
|
2024-11-21 14:31 |
2020-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197599
|
6.1 |
MEDIUM
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack agains…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3460
|
2024-11-21 14:31 |
2020-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197600
|
7.8 |
HIGH
Local
|
qualcomm
|
saipan_firmware
sm8250_firmware
sxr2130_firmware
|
Use after free issue while processing error notification from camx driver due to not properly releasing the sequence data in Snapdragon Mobile in Saipan, SM8250, SXR2130
|
CWE-416
Use After Free
|
CVE-2020-3701
|
2024-11-21 14:31 |
2020-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
