|
222451
|
5.4 |
MEDIUM
Network
|
paloaltonetworks
|
expedition_migration_tool
|
The Expedition Migration tool 1.1.6 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1567
|
2024-11-21 13:36 |
2019-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222452
|
4.8 |
MEDIUM
Network
|
paloaltonetworks
|
expedition
|
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the RADIUS server settings.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1571
|
2024-11-21 13:36 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222453
|
7.5 |
HIGH
Network
|
paloaltonetworks
|
pan-os
|
PAN-OS 9.0.0 may allow an unauthenticated remote user to access php files.
|
NVD-CWE-noinfo
|
CVE-2019-1572
|
2024-11-21 13:36 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222454
|
4.8 |
MEDIUM
Network
|
paloaltonetworks
|
expedition
|
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the LDAP server settings.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1570
|
2024-11-21 13:36 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222455
|
4.8 |
MEDIUM
Network
|
paloaltonetworks
|
expedition
|
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings for account name of admin user.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1569
|
2024-11-21 13:36 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222456
|
7.8 |
HIGH
Local
|
cisco
|
nx-os
|
A vulnerability in the Tetration Analytics agent for Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local attacker to execute arbitrary code as root. The vuln…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2019-1618
|
2024-11-21 13:36 |
2019-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222457
|
7.4 |
HIGH
Adjacent
|
cisco
|
nx-os
|
A vulnerability in the Fibre Channel over Ethernet (FCoE) N-port Virtualization (NPV) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a deni…
|
CWE-913
Improper Control of Dynamically-Managed Code Resources
|
CVE-2019-1617
|
2024-11-21 13:36 |
2019-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222458
|
7.5 |
HIGH
Network
|
cisco
|
nx-os
|
A vulnerability in the Cisco Fabric Services component of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a buffer overflow, resulting in a denial of service (DoS) condi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2019-1616
|
2024-11-21 13:36 |
2019-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222459
|
6.7 |
MEDIUM
Local
|
cisco
|
nx-os
|
A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software i…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2019-1615
|
2024-11-21 13:36 |
2019-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222460
|
8.8 |
HIGH
Network
|
cisco
|
nx-os
|
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The vulnerability is due to incorrect i…
|
CWE-78
OS Command
|
CVE-2019-1614
|
2024-11-21 13:36 |
2019-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
