|
197771
|
6.1 |
MEDIUM
Network
|
cisco
|
finesse
|
A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based m…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3159
|
2024-11-21 14:30 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197772
|
9.1 |
CRITICAL
Network
|
cisco
|
smart_software_manager_on-prem
|
A vulnerability in the High Availability (HA) service of Cisco Smart Software Manager On-Prem could allow an unauthenticated, remote attacker to access a sensitive part of the system with a high-priv…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-3158
|
2024-11-21 14:30 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197773
|
6.1 |
MEDIUM
Network
|
cisco
|
identity_services_engine
|
A vulnerability in the logging component of Cisco Identity Services Engine could allow an unauthenticated remote attacker to conduct cross-site scripting attacks. The vulnerability is due to the impr…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3156
|
2024-11-21 14:30 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197774
|
6.5 |
MEDIUM
Local
|
cisco
|
anyconnect_secure_mobility_client
|
A vulnerability in the installer component of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated local attacker to copy user-supplied files to system level directories w…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2020-3153
|
2024-11-21 14:30 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197775
|
5.9 |
MEDIUM
Network
|
cisco
|
cloud_email_security
email_security_appliance
|
A vulnerability in the email message scanning feature of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to cause a temporary denial of…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-3132
|
2024-11-21 14:30 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197776
|
8.8 |
HIGH
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack…
|
CWE-352
Origin Validation Error
|
CVE-2020-3114
|
2024-11-21 14:30 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197777
|
5.4 |
MEDIUM
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against …
|
CWE-79
Cross-site Scripting
|
CVE-2020-3113
|
2024-11-21 14:30 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197778
|
8.8 |
HIGH
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the REST API endpoint of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to elevate privileges on the application. The vulnerability is due t…
|
CWE-269
Improper Privilege Management
|
CVE-2020-3112
|
2024-11-21 14:30 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197779
|
4.8 |
MEDIUM
Network
|
cisco
|
identity_services_engine
|
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) att…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3149
|
2024-11-21 14:30 |
2020-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197780
|
7.5 |
HIGH
Network
|
clamav
canonical
|
clamav
ubuntu_linux
|
A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an unauthenticated, remote attacker to cause a denial of service …
|
CWE-125
Out-of-bounds Read
|
CVE-2020-3123
|
2024-11-21 14:30 |
2020-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
