|
202261
|
5.4 |
MEDIUM
Network
|
cisco
|
sourcefire_defense_center
firepower_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user …
|
CWE-79
Cross-site Scripting
|
CVE-2020-3320
|
2024-11-21 14:30 |
2020-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202262
|
8.6 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the multicast DNS (mDNS) feature of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of s…
|
CWE-20
Improper Input Validation
|
CVE-2020-3359
|
2024-11-21 14:30 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202263
|
8.8 |
HIGH
Network
|
cisco
|
ios_xe
|
Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to elevate privileges to the level of an Admi…
|
NVD-CWE-noinfo
|
CVE-2020-3141
|
2024-11-21 14:30 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202264
|
8.6 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the packet processing of Cisco IOS XE Software for Cisco 4461 Integrated Services Routers could allow an unauthenticated, remote attacker to cause an affected device to reload, res…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-3414
|
2024-11-21 14:30 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202265
|
7.4 |
HIGH
Adjacent
|
cisco
|
ios
ios_xe
|
A vulnerability in the PROFINET feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to crash and reload, resulting in…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-3409
|
2024-11-21 14:30 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202266
|
8.6 |
HIGH
Network
|
cisco
|
ios
ios_xe
|
A vulnerability in the Split DNS feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial o…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-3408
|
2024-11-21 14:30 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202267
|
8.6 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the RESTCONF and NETCONF-YANG access control list (ACL) function of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload. The vulnera…
|
CWE-476
NULL Pointer Dereference
|
CVE-2020-3407
|
2024-11-21 14:30 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202268
|
7.8 |
HIGH
Local
|
cisco
|
ios_xe
|
A vulnerability in the persistent Telnet/Secure Shell (SSH) CLI of Cisco IOS XE Software could allow an authenticated, local attacker to gain shell access on an affected device and execute commands o…
|
CWE-863
Incorrect Authorization
|
CVE-2020-3404
|
2024-11-21 14:30 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202269
|
7.8 |
HIGH
Local
|
cisco
|
ios_xe
|
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to inject a command to the underlying operating system that will execute with root privileges upon the…
|
CWE-78
OS Command
|
CVE-2020-3403
|
2024-11-21 14:30 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202270
|
8.8 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to utilize parts of the web UI for which they are not authorized.The vulnerability is due …
|
CWE-862
Missing Authorization
|
CVE-2020-3400
|
2024-11-21 14:30 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
