|
202271
|
6.5 |
MEDIUM
Network
|
cisco
|
enterprise_network_function_virtualization_infrastructure
|
A vulnerability in the directory permissions of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to perform a directory traversal attack on a limited…
|
CWE-22
Path Traversal
|
CVE-2020-3365
|
2024-11-21 14:30 |
2020-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202272
|
8.8 |
HIGH
Adjacent
|
cisco
|
nx-os
|
A vulnerability in the Data Management Engine (DME) of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with administrative privileges or cause a denia…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-3415
|
2024-11-21 14:30 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202273
|
8.6 |
HIGH
Network
|
cisco
|
nx-os
|
A vulnerability in the Border Gateway Protocol (BGP) Multicast VPN (MVPN) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a BGP session to repeatedly r…
|
CWE-20
Improper Input Validation
|
CVE-2020-3398
|
2024-11-21 14:30 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202274
|
8.6 |
HIGH
Network
|
cisco
|
nx-os
|
A vulnerability in the Border Gateway Protocol (BGP) Multicast VPN (MVPN) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an affected device to unexpec…
|
CWE-20
Improper Input Validation
|
CVE-2020-3397
|
2024-11-21 14:30 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202275
|
7.8 |
HIGH
Local
|
cisco
|
nx-os
|
A vulnerability in the Enable Secret feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local attacker to issue th…
|
CWE-862
Missing Authorization
|
CVE-2020-3394
|
2024-11-21 14:30 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202276
|
7.5 |
HIGH
Network
|
cisco
|
nx-os
|
A vulnerability in the Protocol Independent Multicast (PIM) feature for IPv6 networks (PIM6) of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS)…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2020-3338
|
2024-11-21 14:30 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202277
|
4.4 |
MEDIUM
Local
|
cisco
|
hyperflex_hx-series_software
|
A vulnerability in the installation component of Cisco Hyperflex HX-Series Software could allow an authenticated, local attacker to retrieve the password that was configured at installation on an aff…
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2020-3389
|
2024-11-21 14:30 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202278
|
6.7 |
MEDIUM
Local
|
cisco
|
connected_mobile_experiences
|
A vulnerability in Cisco Connected Mobile Experiences (CMX) could allow an authenticated, local attacker with administrative credentials to execute arbitrary commands with root privileges. The vulner…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-3152
|
2024-11-21 14:30 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202279
|
6.7 |
MEDIUM
Local
|
cisco
|
connected_mobile_experiences
|
A vulnerability in the CLI of Cisco Connected Mobile Experiences (CMX) could allow an authenticated, local attacker with administrative credentials to bypass restrictions on the CLI. The vulnerabilit…
|
CWE-287
Improper Authentication
|
CVE-2020-3151
|
2024-11-21 14:30 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202280
|
7.5 |
HIGH
Network
|
cisco
|
dna_center
|
A vulnerability in Cisco DNA Center software could allow an unauthenticated remote attacker access to sensitive information on an affected system. The vulnerability is due to improper handling of aut…
|
CWE-287
Improper Authentication
|
CVE-2020-3411
|
2024-11-21 14:30 |
2020-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
