Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

Cisco IP Phones Exposure of Sensitive Information to an Unauthorized Actor (CVE-2025-20336)

A vulnerability in the directory permissions of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 could allow an unauthenticated, remote attacker to access sensitive information on an affected device. This vulnerability exists because the product expose...

7.5CVSS5.5AI score0.00349EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/05 3:32 p.m.5 views

EUVD-2025-26614

A vulnerability in the directory permissions of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 could allow an unauthenticated, remote attacker to write arbitrary files on an affected device. This vulnerability is due to a lack of proper authenticatio...

5.3CVSS6.4AI score0.00332EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2020-24689

Malware in sbrugna...

4.7CVSS5.2AI score0.00413EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-24760

Malware in sbrugna...

7.4CVSS7.7AI score0.00507EPSS
Exploits0References2
NVD
NVD
added 2025/09/03 6:15 p.m.5 views

CVE-2025-20335

A vulnerability in the directory permissions of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 could allow an unauthenticated, remote attacker to write arbitrary files on an affected device. This vulnerability is due to a lack of proper authenticatio...

5.3CVSS0.00332EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/03 5:41 p.m.4 views

CVE-2025-20336 Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Firmware Information Disclosure Vulnerability

A vulnerability in the directory permissions of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 could allow an unauthenticated, remote attacker to access sensitive information on an affected device. This vulnerability exists because the product expose...

5.3CVSS6.1AI score0.00349EPSS
Exploits0References1
CVE
CVE
added 2025/09/03 5:41 p.m.24 views

CVE-2025-20336

CVE-2025-20336 affects Cisco Desk Phone 9800 Series, Cisco IP Phone 7800/8800 Series, and Cisco Video Phone 8875. The root cause is a directory permissions issue that can permit an unauthenticated, remote attacker to access sensitive information from the device. Exploitation requires Web Access t...

7.5CVSS6.1AI score0.00349EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/11/06 5:15 p.m.5 views

CVE-2024-20445

A vulnerability in the web UI of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 could allow an unauthenticated, remote attacker to access sensitive information on an affected device. This vulnerability is due to improper storage of sensitive...

5.3CVSS5.8AI score0.0045EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/06 4:29 p.m.15 views

CVE-2024-20445 Cisco IP Phone 7800, 8800, and 9800 Series Information Disclosure Vulnerability

A vulnerability in the web UI of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 could allow an unauthenticated, remote attacker to access sensitive information on an affected device. This vulnerability is due to improper storage of sensitive...

5.3CVSS0.0045EPSS
Exploits0References1
CVE
CVE
added 2022/04/15 2:16 p.m.111 views

CVE-2022-20683

CVE-2022-20683 describes a DoS vulnerability in Cisco IOS XE Software for the Catalyst 9800 Series Wireless Controllers, triggered by crafted packets processed by the AVC-FNF (Application Visibility and Control) feature. Root cause: insufficient packet verification during AVC inspection. Impact: ...

8.6CVSS8.5AI score0.01437EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/10/12 12:0 a.m.48 views

Cisco IOS XE Software for Catalyst 9800 Series DoS (cisco-sa-iosxe-wlc-fnfv9-EvrAQpNX)

According to its self-reported version, Cisco IOS XE Software is affected by a DoS vulnerability in the Flexible NetFlow Version 9 packet processor due to insufficient validation of certain parameters in a Flexible NetFlow Version 9 record. An unauthenticated, remote attacker could cause a DoS...

8.6CVSS8AI score0.01374EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/10/08 12:0 a.m.5 views

The vulnerability in the implementation of the Control and Provisioning of Wireless Access Points (CAPWAP) protocol for the Cisco IOS XE operating system on Cisco Catalyst 9800 Series network devices allows a attacker to cause service interruptions.

The vulnerability of the Control and Provisioning of Wireless Access Points CAPWAP implementation for the Cisco IOS XE operating system on Cisco Catalyst 9800 Series network devices is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to...

7.4CVSS7.2AI score0.00507EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2020/09/25 12:0 a.m.8 views

Cisco IOS XE Denial of Service Vulnerability (CNVD-2021-43453)

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial-of-service vulnerability exists in Cisco IOS XE's Control and Configuration of Access Points over Wireless CAPWAP protocol processing used by the Cisco Catalyst 9800 seri...

7.4CVSS6.5AI score0.00571EPSS
Exploits0References1
CNVD
CNVD
added 2020/09/25 12:0 a.m.11 views

Cisco IOS XE Denial of Service Vulnerability (CNVD-2021-43452)

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial-of-service vulnerability exists in Cisco IOS XE's Control and Configuration of Access Points over Wireless CAPWAP protocol processing used by the Cisco Catalyst 9800 seri...

7.4CVSS6.5AI score0.00458EPSS
Exploits0References1
CNVD
CNVD
added 2020/09/25 12:0 a.m.8 views

Cisco IOS XE Denial of Service Vulnerability (CNVD-2021-43451)

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial-of-service vulnerability exists in Cisco IOS XE's Control and Configuration of Access Points over Wireless CAPWAP protocol processing used by the Cisco Catalyst 9800 seri...

7.4CVSS6.5AI score0.00507EPSS
Exploits0References1
NVD
NVD
added 2020/09/24 6:15 p.m.20 views

CVE-2020-3418

A vulnerability in Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9800 Series Routers could allow an unauthenticated, adjacent attacker to send ICMPv6 traffic prior to the client being placed into RUN state. The vulnerability is due to an incomplete access control list ACL being...

4.7CVSS0.00413EPSS
Exploits0References1
Prion
Prion
added 2020/09/24 6:15 p.m.18 views

Input validation

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of an affected...

6.1CVSS7.4AI score0.00507EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/09/24 6:1 p.m.7 views

CVE-2020-3418 Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family Improper Access Control Vulnerability

A vulnerability in Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9800 Series Routers could allow an unauthenticated, adjacent attacker to send ICMPv6 traffic prior to the client being placed into RUN state. The vulnerability is due to an incomplete access control list ACL being...

4.7CVSS6.8AI score0.00413EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/09/24 5:52 p.m.9 views

CVE-2020-3486 Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerabilities

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of an affected...

7.4CVSS7.1AI score0.00571EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/24 5:52 p.m.20 views

CVE-2020-3488 Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerabilities

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of an affected...

7.4CVSS7.5AI score0.00507EPSS
Exploits0References1
Rows per page
Query Builder