|
221661
|
6.5 |
MEDIUM
Adjacent
|
cisco
|
application_policy_infrastructure_controller
|
A vulnerability in the fabric infrastructure VLAN connection establishment of the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated,…
|
NVD-CWE-Other
|
CVE-2019-1890
|
2024-11-21 13:37 |
2019-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221662
|
7.2 |
HIGH
Network
|
cisco
|
application_policy_infrastructure_controller
|
A vulnerability in the REST API for software device management in Cisco Application Policy Infrastructure Controller (APIC) Software could allow an authenticated, remote attacker to escalate privileg…
|
CWE-20
Improper Input Validation
|
CVE-2019-1889
|
2024-11-21 13:37 |
2019-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221663
|
8.6 |
HIGH
Network
|
cisco
|
asyncos
web_security_appliance
|
A vulnerability in the HTTPS decryption feature of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability i…
|
CWE-295
Improper Certificate Validation
|
CVE-2019-1886
|
2024-11-21 13:37 |
2019-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221664
|
6.5 |
MEDIUM
Network
|
cisco
|
asyncos
web_security_appliance
|
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to cause a denial of service (DoS) condit…
|
CWE-20
Improper Input Validation
|
CVE-2019-1884
|
2024-11-21 13:37 |
2019-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221665
|
7.3 |
HIGH
Local
|
cisco
|
jabber
|
A vulnerability in the loading mechanism of specific dynamic link libraries in Cisco Jabber for Windows could allow an authenticated, local attacker to perform a DLL preloading attack. To exploit thi…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2019-1855
|
2024-11-21 13:37 |
2019-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221666
|
8.8 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the web-based UI (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The …
|
CWE-352
Origin Validation Error
|
CVE-2019-1904
|
2024-11-21 13:37 |
2019-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221667
|
6.5 |
MEDIUM
Network
|
cisco
|
prime_infrastructure
|
A vulnerability in the Virtual Domain system of Cisco Prime Infrastructure (PI) could allow an authenticated, remote attacker to change the virtual domain configuration, which could lead to privilege…
|
CWE-20
Improper Input Validation
|
CVE-2019-1906
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221668
|
5.3 |
MEDIUM
Network
|
cisco
|
rv110w_firmware
rv130w_firmware
rv215w_firmware
|
A vulnerability in the web interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to acquire the list of devices that are connected to the guest network…
|
CWE-425
Direct Request ('Forced Browsing')
|
CVE-2019-1899
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221669
|
5.8 |
MEDIUM
Network
|
cisco
|
email_security_appliance
|
A vulnerability in the GZIP decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured content filter…
|
CWE-20
Improper Input Validation
|
CVE-2019-1905
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221670
|
9.1 |
CRITICAL
Network
|
cisco
|
security_manager
|
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote attacker to access sensitive information or cause a denial of service (DoS) condition. The vulnerability is due to imp…
|
CWE-611
XXE
|
CVE-2019-1903
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
