|
222351
|
6.5 |
MEDIUM
Network
|
cisco
|
integrated_management_controller
unified_computing_system
|
A vulnerability in the Server Utilities of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to gain unauthorized access to sensitive user information from th…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2019-1627
|
2024-11-21 13:36 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222352
|
8.8 |
HIGH
Network
|
cisco
|
sd-wan_firmware
|
A vulnerability in the vManage web-based UI (Web UI) of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to gain elevated privileges on an affected vManage device. The vulnerab…
|
CWE-863
Incorrect Authorization
|
CVE-2019-1626
|
2024-11-21 13:36 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222353
|
7.8 |
HIGH
Local
|
cisco
|
sd-wan_firmware
|
A vulnerability in the CLI of Cisco SD-WAN Solution could allow an authenticated, local attacker to elevate lower-level privileges to the root user on an affected device. The vulnerability is due to …
|
NVD-CWE-Other
|
CVE-2019-1625
|
2024-11-21 13:36 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222354
|
6.7 |
MEDIUM
Local
|
cisco
|
meeting_server
|
A vulnerability in the CLI configuration shell of Cisco Meeting Server could allow an authenticated, local attacker to inject arbitrary commands as the root user. The vulnerability is due to insuffic…
|
CWE-78
OS Command
|
CVE-2019-1623
|
2024-11-21 13:36 |
2019-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222355
|
6.1 |
MEDIUM
Network
|
paloaltonetworks
|
demisto
|
Cross-site scripting (XSS) vulnerability in Palo Alto Networks Demisto 4.5 build 40249 may allow an unauthenticated attacker to run arbitrary JavaScript or HTML.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1568
|
2024-11-21 13:36 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222356
|
7.5 |
HIGH
Network
|
cisco
|
ip_conference_phone_7832_firmware
ip_conference_phone_8832_firmware
ip_phone_7811_firmware
ip_phone_7821_firmware
ip_phone_7841_firmware
ip_phone_7861_firmware
ip_phone_8811_firmwar…
|
A vulnerability in the call-handling functionality of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to caus…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2019-1635
|
2024-11-21 13:36 |
2019-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222357
|
7.8 |
HIGH
Local
|
cisco
|
nx-os
|
A vulnerability in the background operations functionality of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an authenticated, local attacker to gai…
|
CWE-20
Improper Input Validation
|
CVE-2019-1592
|
2024-11-21 13:36 |
2019-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222358
|
8.1 |
HIGH
Network
|
cisco
|
nx-os
|
A vulnerability in the Transport Layer Security (TLS) certificate validation functionality of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unau…
|
CWE-295
Improper Certificate Validation
|
CVE-2019-1590
|
2024-11-21 13:36 |
2019-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222359
|
4.6 |
MEDIUM
Physics
|
cisco
|
nx-os
|
A vulnerability in the Trusted Platform Module (TPM) functionality of software for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthentica…
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2019-1589
|
2024-11-21 13:36 |
2019-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222360
|
4.3 |
MEDIUM
Network
|
cisco
|
nx-os
|
A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, remote attacker to access sensitive information. The vulnerab…
|
CWE-20
Improper Input Validation
|
CVE-2019-1587
|
2024-11-21 13:36 |
2019-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
