|
222411
|
4.3 |
MEDIUM
Network
|
cisco
|
amp_threat_grid_appliance
amp_threat_grid_cloud
|
A vulnerability in Cisco AMP Threat Grid could allow an authenticated, remote attacker to access sensitive information. The vulnerability is due to unsafe creation of API keys. An attacker could expl…
|
NVD-CWE-noinfo
|
CVE-2019-1657
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222412
|
8.6 |
HIGH
Network
|
cisco
|
firepower_threat_defense
|
A vulnerability in the data acquisition (DAQ) component of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured access control policies o…
|
CWE-693
Protection Mechanism Failure
|
CVE-2019-1669
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222413
|
6.1 |
MEDIUM
Network
|
cisco
|
socialminer
|
A vulnerability in the chat feed feature of Cisco SocialMiner could allow an unauthenticated, remote attacker to perform cross-site scripting (XSS) attacks against a user of the web-based user interf…
|
CWE-79
Cross-site Scripting
|
CVE-2019-1668
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222414
|
7.4 |
HIGH
Network
|
cisco
|
unified_intelligence_center
|
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and pe…
|
CWE-352
Origin Validation Error
|
CVE-2019-1658
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222415
|
5.3 |
MEDIUM
Local
|
cisco
|
enterprise_nfv_infrastructure_software
|
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local attacker to access the shell of the underlying Linux operating system on the aff…
|
CWE-20
Improper Input Validation
|
CVE-2019-1656
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222416
|
6.1 |
MEDIUM
Network
|
cisco
|
webex_meetings_server
|
A vulnerability in the web-based management interface of Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of t…
|
CWE-79
Cross-site Scripting
|
CVE-2019-1655
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222417
|
8.0 |
HIGH
Adjacent
|
cisco
|
vsmart_controller
sd-wan
|
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, adjacent attacker to bypass authentication and have direct unauthorized access to other vSmart containers. The vulnerability…
|
CWE-284
Improper Access Control
|
CVE-2019-1647
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222418
|
7.5 |
HIGH
Network
|
cisco
|
rv320_firmware
rv325_firmware
|
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to retrieve sensitive inform…
|
CWE-200
Information Exposure
|
CVE-2019-1653
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222419
|
7.2 |
HIGH
Network
|
cisco
|
rv320_firmware
rv325_firmware
|
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges…
|
CWE-78
OS Command
|
CVE-2019-1652
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222420
|
8.8 |
HIGH
Network
|
cisco
|
vsmart_controller
|
A vulnerability in the vContainer of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to cause a denial of service (DoS) condition and execute arbitrary code as the root user. …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2019-1651
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
