|
197951
|
8.6 |
HIGH
Network
|
cisco
|
ios
ios_xe
nx-os
|
A vulnerability in Security Group Tag Exchange Protocol (SXP) in Cisco IOS Software, Cisco IOS XE Software, and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause the affec…
|
CWE-20
Improper Input Validation
|
CVE-2020-3228
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197952
|
9.8 |
CRITICAL
Network
|
cisco
|
ios_xe
|
A vulnerability in the authorization controls for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an unauthenticated, remote attacker to execute Cisco IOx API co…
|
CWE-863
Incorrect Authorization
|
CVE-2020-3227
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197953
|
8.6 |
HIGH
Network
|
cisco
|
ios_xe
ios
|
A vulnerability in the Session Initiation Protocol (SIP) library of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected dev…
|
CWE-20
Improper Input Validation
|
CVE-2020-3226
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197954
|
8.6 |
HIGH
Network
|
cisco
|
ios
ios_xe
|
Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause…
|
CWE-20
Improper Input Validation
|
CVE-2020-3225
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197955
|
8.8 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to inject IOS commands to an affected device.…
|
CWE-78
OS Command
|
CVE-2020-3224
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197956
|
4.9 |
MEDIUM
Network
|
cisco
|
ios_xe
|
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker with administrative privileges to read arbitrary files on the underlyin…
|
CWE-59
Link Following
|
CVE-2020-3223
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197957
|
4.3 |
MEDIUM
Adjacent
|
cisco
|
ios_xe
|
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to bypass access control restrictions on an affected device. The vu…
|
NVD-CWE-Other
|
CVE-2020-3222
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197958
|
8.6 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to caus…
|
CWE-20
Improper Input Validation
|
CVE-2020-3221
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197959
|
6.8 |
MEDIUM
Network
|
cisco
|
ios_xe
|
A vulnerability in the hardware crypto driver of Cisco IOS XE Software for Cisco 4300 Series Integrated Services Routers and Cisco Catalyst 9800-L Wireless Controllers could allow an unauthenticated,…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2020-3220
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197960
|
8.8 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to inject and execute arbitrary commands with administrative privileges on the underlying operatin…
|
CWE-20
Improper Input Validation
|
CVE-2020-3219
|
2024-11-21 14:30 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
