|
222361
|
4.6 |
MEDIUM
Physics
|
cisco
|
application_policy_infrastructure_controller
|
A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) Software could allow an unauthenticated, local attacker with physical access to obtain sensitive information from an affec…
|
CWE-459
Incomplete Cleanup
|
CVE-2019-1586
|
2024-11-21 13:36 |
2019-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222362
|
5.4 |
MEDIUM
Network
|
paloaltonetworks
|
expedition_migration_tool
|
Cross-site scripting (XSS) vulnerability in Palo Alto Networks Expedition Migration tool 1.1.12 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the Devices View.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1574
|
2024-11-21 13:36 |
2019-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222363
|
2.5 |
LOW
Local
|
paloaltonetworks
|
globalprotect
|
GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 and earlier for macOS may allow a local authenticated attacker who has compromised the end-user account and gained the ability to …
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2019-1573
|
2024-11-21 13:36 |
2019-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222364
|
5.4 |
MEDIUM
Network
|
paloaltonetworks
|
expedition_migration_tool
|
The Expedition Migration tool 1.1.6 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1567
|
2024-11-21 13:36 |
2019-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222365
|
4.8 |
MEDIUM
Network
|
paloaltonetworks
|
expedition
|
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the RADIUS server settings.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1571
|
2024-11-21 13:36 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222366
|
7.5 |
HIGH
Network
|
paloaltonetworks
|
pan-os
|
PAN-OS 9.0.0 may allow an unauthenticated remote user to access php files.
|
NVD-CWE-noinfo
|
CVE-2019-1572
|
2024-11-21 13:36 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222367
|
4.8 |
MEDIUM
Network
|
paloaltonetworks
|
expedition
|
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the LDAP server settings.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1570
|
2024-11-21 13:36 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222368
|
4.8 |
MEDIUM
Network
|
paloaltonetworks
|
expedition
|
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings for account name of admin user.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1569
|
2024-11-21 13:36 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222369
|
7.8 |
HIGH
Local
|
cisco
|
nx-os
|
A vulnerability in the Tetration Analytics agent for Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local attacker to execute arbitrary code as root. The vuln…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2019-1618
|
2024-11-21 13:36 |
2019-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222370
|
7.4 |
HIGH
Adjacent
|
cisco
|
nx-os
|
A vulnerability in the Fibre Channel over Ethernet (FCoE) N-port Virtualization (NPV) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a deni…
|
CWE-913
Improper Control of Dynamically-Managed Code Resources
|
CVE-2019-1617
|
2024-11-21 13:36 |
2019-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
