|
221721
|
7.3 |
HIGH
Local
|
cisco
|
jabber
|
A vulnerability in the loading mechanism of specific dynamic link libraries in Cisco Jabber for Windows could allow an authenticated, local attacker to perform a DLL preloading attack. To exploit thi…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2019-1855
|
2024-11-21 13:37 |
2019-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221722
|
8.8 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the web-based UI (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The …
|
CWE-352
Origin Validation Error
|
CVE-2019-1904
|
2024-11-21 13:37 |
2019-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221723
|
6.5 |
MEDIUM
Network
|
cisco
|
prime_infrastructure
|
A vulnerability in the Virtual Domain system of Cisco Prime Infrastructure (PI) could allow an authenticated, remote attacker to change the virtual domain configuration, which could lead to privilege…
|
CWE-20
Improper Input Validation
|
CVE-2019-1906
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221724
|
5.3 |
MEDIUM
Network
|
cisco
|
rv110w_firmware
rv130w_firmware
rv215w_firmware
|
A vulnerability in the web interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to acquire the list of devices that are connected to the guest network…
|
CWE-425
Direct Request ('Forced Browsing')
|
CVE-2019-1899
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221725
|
5.8 |
MEDIUM
Network
|
cisco
|
email_security_appliance
|
A vulnerability in the GZIP decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured content filter…
|
CWE-20
Improper Input Validation
|
CVE-2019-1905
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221726
|
9.1 |
CRITICAL
Network
|
cisco
|
security_manager
|
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote attacker to access sensitive information or cause a denial of service (DoS) condition. The vulnerability is due to imp…
|
CWE-611
XXE
|
CVE-2019-1903
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221727
|
5.3 |
MEDIUM
Network
|
cisco
|
rv110w_firmware
rv130w_firmware
rv215w_firmware
|
A vulnerability in the web-based management interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to access the syslog file on an affected device. The …
|
CWE-425
Direct Request ('Forced Browsing')
|
CVE-2019-1898
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221728
|
5.3 |
MEDIUM
Network
|
cisco
|
rv110w_firmware
rv130w_firmware
rv215w_firmware
|
A vulnerability in the web-based management interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to disconnect clients that are connected to the guest…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-1897
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221729
|
6.7 |
MEDIUM
Local
|
cisco
|
unified_computing_system
integrated_management_controller
|
A vulnerability in the CLI of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulner…
|
CWE-78
OS Command
|
CVE-2019-1879
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221730
|
8.8 |
HIGH
Adjacent
|
cisco
|
telepresence_tc
telepresence_ce
|
A vulnerability in the Cisco Discovery Protocol (CDP) implementation for the Cisco TelePresence Codec (TC) and Collaboration Endpoint (CE) Software could allow an unauthenticated, adjacent attacker t…
|
CWE-78
OS Command
|
CVE-2019-1878
|
2024-11-21 13:37 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
