|
221951
|
8.6 |
HIGH
Network
|
cisco
|
firepower_threat_defense
|
A vulnerability in the data acquisition (DAQ) component of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured access control policies o…
|
CWE-693
Protection Mechanism Failure
|
CVE-2019-1669
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221952
|
6.1 |
MEDIUM
Network
|
cisco
|
socialminer
|
A vulnerability in the chat feed feature of Cisco SocialMiner could allow an unauthenticated, remote attacker to perform cross-site scripting (XSS) attacks against a user of the web-based user interf…
|
CWE-79
Cross-site Scripting
|
CVE-2019-1668
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221953
|
7.4 |
HIGH
Network
|
cisco
|
unified_intelligence_center
|
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and pe…
|
CWE-352
Origin Validation Error
|
CVE-2019-1658
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221954
|
5.3 |
MEDIUM
Local
|
cisco
|
enterprise_nfv_infrastructure_software
|
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local attacker to access the shell of the underlying Linux operating system on the aff…
|
CWE-20
Improper Input Validation
|
CVE-2019-1656
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221955
|
6.1 |
MEDIUM
Network
|
cisco
|
webex_meetings_server
|
A vulnerability in the web-based management interface of Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of t…
|
CWE-79
Cross-site Scripting
|
CVE-2019-1655
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221956
|
8.0 |
HIGH
Adjacent
|
cisco
|
vsmart_controller
sd-wan
|
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, adjacent attacker to bypass authentication and have direct unauthorized access to other vSmart containers. The vulnerability…
|
CWE-284
Improper Access Control
|
CVE-2019-1647
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221957
|
7.5 |
HIGH
Network
|
cisco
|
rv320_firmware
rv325_firmware
|
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to retrieve sensitive inform…
|
CWE-200
Information Exposure
|
CVE-2019-1653
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221958
|
7.2 |
HIGH
Network
|
cisco
|
rv320_firmware
rv325_firmware
|
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges…
|
CWE-78
OS Command
|
CVE-2019-1652
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221959
|
8.8 |
HIGH
Network
|
cisco
|
vsmart_controller
|
A vulnerability in the vContainer of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to cause a denial of service (DoS) condition and execute arbitrary code as the root user. …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2019-1651
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221960
|
8.8 |
HIGH
Network
|
cisco
|
vedge_100_firmware
vedge_1000_firmware
vedge_2000_firmware
vedge_5000_firmware
vbond_orchestrator
vsmart_controller
vmanage_network_management
sd-wan
|
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is …
|
CWE-78
OS Command
|
CVE-2019-1650
|
2024-11-21 13:37 |
2019-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
