|
202181
|
8.8 |
HIGH
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (UCM) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) atta…
|
CWE-352
Origin Validation Error
|
CVE-2020-3135
|
2024-11-21 14:30 |
2020-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202182
|
7.5 |
HIGH
Network
|
cisco
|
email_security_appliance
|
A vulnerability in the email message scanning of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured filters on the de…
|
CWE-20
Improper Input Validation
|
CVE-2020-3133
|
2024-11-21 14:30 |
2020-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202183
|
6.5 |
MEDIUM
Network
|
cisco
|
unity_connection
|
A vulnerability in the web management interface of Cisco Unity Connection could allow an authenticated remote attacker to overwrite files on the underlying filesystem. The vulnerability is due to ins…
|
CWE-20
Improper Input Validation
|
CVE-2020-3130
|
2024-11-21 14:30 |
2020-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202184
|
6.5 |
MEDIUM
Network
|
cisco
|
hosted_collaboration_mediation_fulfillment
|
A vulnerability in the web-based interface of Cisco Hosted Collaboration Mediation Fulfillment (HCM-F) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) a…
|
CWE-352
Origin Validation Error
|
CVE-2020-3124
|
2024-11-21 14:30 |
2020-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202185
|
4.7 |
MEDIUM
Network
|
cisco
|
web_security_appliance
content_security_management_appliance
|
A vulnerability in the API Framework of Cisco AsyncOS for Cisco Web Security Appliance (WSA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to i…
|
NVD-CWE-Other
|
CVE-2020-3117
|
2024-11-21 14:30 |
2020-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202186
|
5.5 |
MEDIUM
Local
|
cisco
|
webex_meetings_server
webex_meetings_online
|
A vulnerability in the way Cisco Webex applications process Universal Communications Format (UCF) files could allow an attacker to cause a denial of service (DoS) condition. The vulnerability is due …
|
CWE-20
Improper Input Validation
|
CVE-2020-3116
|
2024-11-21 14:30 |
2020-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202187
|
6.5 |
MEDIUM
Network
|
cisco
|
enterprise_network_function_virtualization_infrastructure
|
A vulnerability in the directory permissions of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to perform a directory traversal attack on a limited…
|
CWE-22
Path Traversal
|
CVE-2020-3365
|
2024-11-21 14:30 |
2020-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202188
|
8.8 |
HIGH
Adjacent
|
cisco
|
nx-os
|
A vulnerability in the Data Management Engine (DME) of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with administrative privileges or cause a denia…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-3415
|
2024-11-21 14:30 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202189
|
8.6 |
HIGH
Network
|
cisco
|
nx-os
|
A vulnerability in the Border Gateway Protocol (BGP) Multicast VPN (MVPN) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a BGP session to repeatedly r…
|
CWE-20
Improper Input Validation
|
CVE-2020-3398
|
2024-11-21 14:30 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202190
|
8.6 |
HIGH
Network
|
cisco
|
nx-os
|
A vulnerability in the Border Gateway Protocol (BGP) Multicast VPN (MVPN) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an affected device to unexpec…
|
CWE-20
Improper Input Validation
|
CVE-2020-3397
|
2024-11-21 14:30 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
