|
195841
|
8.8 |
HIGH
Network
|
cisco
mcafee
|
dna_center
agent
|
A vulnerability in the web-based management interface of Cisco DNA Center Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack to manipulate …
|
CWE-352
Origin Validation Error
|
CVE-2021-1257
|
2024-11-21 14:43 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195842
|
5.3 |
MEDIUM
Network
|
cisco
|
content_security_management_appliance
web_security_appliance
email_security_appliance
|
A vulnerability in the authentication for the general purpose APIs implementation of Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security Ap…
|
-
|
CVE-2021-1129
|
2024-11-21 14:43 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195843
|
4.3 |
MEDIUM
Network
|
cisco
|
connected_mobile_experiences
|
A vulnerability in Cisco Connected Mobile Experiences (CMX) API authorizations could allow an authenticated, remote attacker to enumerate what users exist on the system. The vulnerability is due to a…
|
CWE-862
Missing Authorization
|
CVE-2021-1143
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195844
|
4.3 |
MEDIUM
Network
|
cisco
|
firepower_management_center
|
A vulnerability in the dashboard widget of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected d…
|
CWE-776
XML Entity Expansion
|
CVE-2021-1267
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195845
|
5.5 |
MEDIUM
Local
|
cisco
mcafee
|
anyconnect_secure_mobility_client
agent_epolicy_orchestrator_extension
|
A vulnerability in the upgrade component of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker with low privileges to read arbitrary files on the underlying operatin…
|
CWE-269
Improper Privilege Management
|
CVE-2021-1258
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195846
|
6.1 |
MEDIUM
Network
|
cisco
|
finesse
|
Cisco Finesse, Cisco Virtualized Voice Browser, and Cisco Unified CVP OpenSocial Gadget Editor Unauthenticated Access Vulnerability
A vulnerability in the web management interface of Cisco Finesse…
|
CWE-79
Cross-site Scripting
|
CVE-2021-1246
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195847
|
6.1 |
MEDIUM
Network
|
cisco
|
finesse
|
Cisco Finesse and Cisco Unified CVP OpenSocial Gadget Editor Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Finesse and Cisco Unified CVP could a…
|
CWE-79
Cross-site Scripting
|
CVE-2021-1245
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195848
|
4.3 |
MEDIUM
Network
|
cisco
|
webex_teams
|
A vulnerability in Cisco Webex Teams could allow an unauthenticated, remote attacker to manipulate file names within the messaging interface. The vulnerability exists because the affected software mi…
|
NVD-CWE-noinfo
|
CVE-2021-1242
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195849
|
7.3 |
HIGH
Local
|
cisco
|
proximity
|
A vulnerability in the loading process of specific DLLs in Cisco Proximity Desktop for Windows could allow an authenticated, local attacker to load a malicious library. To exploit this vulnerability,…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2021-1240
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195850
|
4.8 |
MEDIUM
Network
|
cisco
|
firepower_management_center
|
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) …
|
CWE-79
Cross-site Scripting
|
CVE-2021-1239
|
2024-11-21 14:43 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
