208 matches found
The vulnerability of Cisco BroadWorks server software arises from the lack of measures taken to neutralize specific elements, allowing attackers to elevate their privileges to the root level.
The vulnerability of Cisco BroadWorks server software exists due to the lack of measures taken to neutralize special elements used in the operating system command. Exploiting this vulnerability can allow attackers to elevate their privileges to the root level...
The vulnerability of Cisco BroadWorks server software, related to deficiencies in access control, allows a perpetrator to elevate their privileges to the root level.
The vulnerability of Cisco BroadWorks server software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to elevate their privileges to the root level by verifying their identity as a user with the role of BWORKS or BWSUPERADMIN...
PT-2023-3935 · Cisco · Cisco Broadworks
Name of the Vulnerable Software and Affected Versions: Cisco BroadWorks affected versions not specified Description: A vulnerability in the privilege management functionality could allow an authenticated, local attacker to elevate privileges to root on an affected system. This issue is due to...
Cisco BroadWorks 安全漏洞
Cisco BroadWorks is a carrier-grade unified communications software platform from Cisco. It is used to deploy cloud calls from public network platforms on any type of wired or wireless network architecture. A security vulnerability exists in Cisco BroadWorks that stems from a flaw in the privileg...
Cisco BroadWorks Privilege Escalation Vulnerability
A vulnerability in the privilege management functionality of all Cisco BroadWorks server types could allow an authenticated, local attacker to elevate privileges to root on an affected system. This vulnerability is due to incorrect implementation of user role permissions. An attacker could exploi...
CVE-2023-20210
A vulnerability in Cisco BroadWorks could allow an authenticated, local attacker to elevate privileges to the root user on an affected device. The vulnerability is due to insufficient input validation by the operating system CLI. An attacker could exploit this vulnerability by issuing a crafted...
CVE-2023-20210
A vulnerability in Cisco BroadWorks could allow an authenticated, local attacker to elevate privileges to the root user on an affected device. The vulnerability is due to insufficient input validation by the operating system CLI. An attacker could exploit this vulnerability by issuing a crafted...
Input validation
A vulnerability in Cisco BroadWorks could allow an authenticated, local attacker to elevate privileges to the root user on an affected device. The vulnerability is due to insufficient input validation by the operating system CLI. An attacker could exploit this vulnerability by issuing a crafted...
CVE-2023-20210
CVE-2023-20210 affects Cisco BroadWorks. The issue is caused by insufficient input validation in the operating system CLI, enabling an authenticated, local attacker with BroadWorks admin privileges to execute commands as the root user on the affected device. The exploit requires crafting a comman...
Cisco BroadWorks 安全漏洞
Cisco BroadWorks is a carrier-grade unified communications software platform from Cisco. It is used to deploy cloud calls from public network platforms on any type of wired or wireless network architecture. A security vulnerability exists in Cisco BroadWorks that stems from insufficient input...
Cisco BroadWorks Privilege Escalation Vulnerability
A vulnerability in Cisco BroadWorks could allow an authenticated, local attacker to elevate privileges to the root user on an affected device. The vulnerability is due to insufficient input validation by the operating system CLI. An attacker could exploit this vulnerability by issuing a crafted...
The vulnerability of the Cisco BroadWorks Network Server, related to improper management of internal resources, allows a attacker to execute a DoS attack.
The vulnerability of the Cisco BroadWorks Network Server is related to improper management of internal resources within the application when handling large delegations. Exploiting this vulnerability can allow a malicious actor to carry out a DoS attack...
Cisco Releases Security Advisories for Multiple Products
Cisco has released security updates for vulnerabilities affecting Industrial Network Director IND, Modeling Labs, StarOS Software, and BroadbandWorks Network Server. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and...
Cisco BroadWorks Network Server TCP Denial of Service Vulnerability
A vulnerability in the local interface of Cisco BroadWorks Network Server could allow an unauthenticated, remote attacker to exhaust system resources, causing a denial of service DoS condition. This vulnerability exists because rate limiting does not occur for certain incoming TCP connections. An...
PT-2023-2561 · Cisco · Cisco Broadworks Network Server
Name of the Vulnerable Software and Affected Versions: Cisco BroadWorks Network Server affected versions not specified Description: The issue is related to improper management of internal resources within the application when handling large delegations, which could allow a remote attacker to caus...
The vulnerability in the web interface for managing Cisco BroadWorks Application Server, Cisco BroadWorks Xtended Services Platform, and BroadWorks Application Delivery Platform allows a attacker to carry out cross-site scripting attacks.
The vulnerability of the web interface for managing Cisco BroadWorks Application Server, Cisco BroadWorks Xtended Services Platform, and BroadWorks Application Delivery Platform exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a...
CVE-2023-20020
A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due...
CVE-2023-20020
A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due...
CVE-2023-20019
A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform, Cisco BroadWorks Application Server, and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user ...
CVE-2023-20019
A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform, Cisco BroadWorks Application Server, and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user ...