|
223871
|
8.6 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the Cisco TrustSec (CTS) Protected Access Credential (PAC) provisioning module of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affe…
|
CWE-20
Improper Input Validation
|
CVE-2019-12663
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223872
|
7.5 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the HTTP server code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the HTTP server to crash. The vulnerability is due to a logical error in the …
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2019-12659
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223873
|
6.7 |
MEDIUM
Local
|
cisco
|
ios
|
A vulnerability in the filesystem of Cisco IOS XE Software could allow an authenticated, local attacker within the IOx Guest Shell to modify the namespace container protections on an affected device.…
|
CWE-276
Incorrect Default Permissions
|
CVE-2019-12670
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223874
|
7.5 |
HIGH
Network
|
cisco
|
ios
|
A vulnerability in the RADIUS Change of Authorization (CoA) code of Cisco TrustSec, a feature within Cisco IOS XE Software, could allow an unauthenticated, remote attacker to cause a denial of servic…
|
NVD-CWE-noinfo
|
CVE-2019-12669
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223875
|
4.8 |
MEDIUM
Network
|
cisco
|
ios
ios_xe
|
A vulnerability in the web framework code of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of …
|
CWE-79
Cross-site Scripting
|
CVE-2019-12668
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223876
|
4.8 |
MEDIUM
Network
|
cisco
|
ios_xe
|
A vulnerability in the web framework code of Cisco IOS XE Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web interf…
|
CWE-79
Cross-site Scripting
|
CVE-2019-12667
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223877
|
6.7 |
MEDIUM
Local
|
cisco
|
ios_xe
|
A vulnerability in the Guest Shell of Cisco IOS XE Software could allow an authenticated, local attacker to perform directory traversal on the base Linux operating system of Cisco IOS XE Software. Th…
|
CWE-22
Path Traversal
|
CVE-2019-12666
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223878
|
7.4 |
HIGH
Network
|
cisco
|
ios
|
A vulnerability in the HTTP client feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to read and modify data that should normally have been sent via an encrypte…
|
NVD-CWE-Other
|
CVE-2019-12665
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223879
|
8.8 |
HIGH
Network
|
cisco
|
ios
cloud_services_router_1000v_firmware
integrated_services_virtual_router_firmware
|
Multiple vulnerabilities in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to execute commands with elevated privileges on the affected d…
|
CWE-78
OS Command
|
CVE-2019-12651
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223880
|
8.8 |
HIGH
Network
|
cisco
|
ios
ios_xe
|
Multiple vulnerabilities in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to execute commands with elevated privileges on the affected d…
|
CWE-78
OS Command
|
CVE-2019-12650
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
