Lucene search
K

208 matches found

CNNVD
CNNVD
added 2021/09/08 12:0 a.m.4 views

Cisco BroadWorks CommPilot 授权问题漏洞

Cisco BroadWorks CommPilot is a carrier-grade unified communications software platform optimized for performance and scale from Cisco.BroadWorks is hosted by service providers and enables the deployment of cloud calls from a common network platform on any type of wired or wireless network...

7.2CVSS7.1AI score0.01281EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/09/08 12:0 a.m.6 views

Cisco BroadWorks CommPilot 授权问题漏洞

Cisco BroadWorks CommPilot is a carrier-grade unified communications software platform optimized for performance and scale from Cisco.BroadWorks is hosted by service providers and enables the deployment of cloud calls from a common network platform on any type of wired or wireless network...

6.5CVSS5.6AI score0.01021EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/09/08 12:0 a.m.4 views

PT-2021-4144 · Cisco · Cisco Broadworks Commpilot Application

Name of the Vulnerable Software and Affected Versions: Cisco BroadWorks CommPilot Application Software affected versions not specified Description: The issue is related to multiple vulnerabilities in the authentication procedure of the Cisco BroadWorks CommPilot Application Software web interface...

8.5CVSS7.5AI score0.01281EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.7 views

The vulnerability of the interface for accessing resources on the Cisco BroadWorks Application Server’s XSI-Actions server allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the interface for accessing resources on the Cisco BroadWorks Application Server’s XSI-Actions server is related to deficiencies in data protection. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

4.3CVSS5.5AI score0.00873EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2021/07/08 7:15 p.m.23 views

CVE-2021-1562

A vulnerability in the XSI-Actions interface of Cisco BroadWorks Application Server could allow an authenticated, remote attacker to access sensitive information on an affected system. This vulnerability is due to improper input validation and authorization of specific commands that a user can...

4.3CVSS0.00873EPSS
Exploits0References1
OSV
OSV
added 2021/07/08 7:15 p.m.5 views

CVE-2021-1562

A vulnerability in the XSI-Actions interface of Cisco BroadWorks Application Server could allow an authenticated, remote attacker to access sensitive information on an affected system. This vulnerability is due to improper input validation and authorization of specific commands that a user can...

4.3CVSS5.9AI score0.00873EPSS
Exploits0References1
Prion
Prion
added 2021/07/08 7:15 p.m.20 views

Input validation

A vulnerability in the XSI-Actions interface of Cisco BroadWorks Application Server could allow an authenticated, remote attacker to access sensitive information on an affected system. This vulnerability is due to improper input validation and authorization of specific commands that a user can...

4CVSS4.8AI score0.00873EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/07/08 6:35 p.m.30 views

CVE-2021-1562 Cisco BroadWorks Application Server Information Disclosure Vulnerability

A vulnerability in the XSI-Actions interface of Cisco BroadWorks Application Server could allow an authenticated, remote attacker to access sensitive information on an affected system. This vulnerability is due to improper input validation and authorization of specific commands that a user can...

4.3CVSS5.1AI score0.00873EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/07/08 6:35 p.m.13 views

CVE-2021-1562 Cisco BroadWorks Application Server Information Disclosure Vulnerability

A vulnerability in the XSI-Actions interface of Cisco BroadWorks Application Server could allow an authenticated, remote attacker to access sensitive information on an affected system. This vulnerability is due to improper input validation and authorization of specific commands that a user can...

4.3CVSS6.9AI score0.00873EPSS
Exploits0References1
CVE
CVE
added 2021/07/08 6:35 p.m.65 views

CVE-2021-1562

CVE-2021-1562: Cisco BroadWorks Application Server Information Disclosure involves the XSI-Actions interface. The root cause is improper input validation and authorization of certain commands, enabling an authenticated, remote attacker to access sensitive information on an affected system. Exploi...

4.3CVSS4.7AI score0.00873EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2021/07/07 4:0 p.m.52 views

Cisco BroadWorks Application Server Information Disclosure Vulnerability

A vulnerability in the XSI-Actions interface of Cisco BroadWorks Application Server could allow an authenticated, remote attacker to access sensitive information on an affected system. This vulnerability is due to improper input validation and authorization of specific commands that a user can...

4.3CVSS1.1AI score0.00873EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/07/07 12:0 a.m.7 views

Cisco BroadWorks Application 输入验证错误漏洞

Cisco BroadWorks Application is an enterprise-class calling and collaboration platform from Cisco USA. An input validation error vulnerability exists in Cisco BroadWorks Application Server that could be exploited by an authenticated, remote attacker to gain access to sensitive information on an...

4.3CVSS5.5AI score0.00873EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/07/07 12:0 a.m.8 views

PT-2021-3599 · Cisco · Cisco Broadworks Application Server

Name of the Vulnerable Software and Affected Versions: Cisco BroadWorks Application Server affected versions not specified Description: The issue is related to insufficient protection of internal data in the XSI-Actions interface of the Cisco BroadWorks Application Server. This could allow a remo...

4.3CVSS4.6AI score0.00873EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/05/19 12:0 a.m.5 views

The vulnerability in the web interface of the BroadWorks Messaging Server allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability in the web interface of the BroadWorks Messaging Server is related to incorrect restrictions on XML links to external objects. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information or cause service...

5.5CVSS7.1AI score0.01115EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2021/05/07 12:0 a.m.6 views

Cisco BroadWorks Messaging Server XML External Entity Injection Vulnerability

Cisco BroadWorks Messaging Server is a database server from the American company Cisco Cisco. An XML external entity injection vulnerability exists in Cisco BroadWorks Messaging Server version 22.0. The vulnerability stems from the program not properly handling XML External Entity XXE entries whe...

7.1CVSS6.9AI score0.01115EPSS
Exploits0References1
OSV
OSV
added 2021/05/06 1:15 p.m.1 views

CVE-2021-1530

A vulnerability in the web-based management interface of Cisco BroadWorks Messaging Server Software could allow an authenticated, remote attacker to access sensitive information or cause a partial denial of service DoS condition on an affected system. This vulnerability is due to improper handlin...

7.1CVSS5.8AI score0.01115EPSS
Exploits0References1
NVD
NVD
added 2021/05/06 1:15 p.m.15 views

CVE-2021-1530

A vulnerability in the web-based management interface of Cisco BroadWorks Messaging Server Software could allow an authenticated, remote attacker to access sensitive information or cause a partial denial of service DoS condition on an affected system. This vulnerability is due to improper handlin...

7.1CVSS0.01115EPSS
Exploits0References1
Prion
Prion
added 2021/05/06 1:15 p.m.18 views

Xxe

A vulnerability in the web-based management interface of Cisco BroadWorks Messaging Server Software could allow an authenticated, remote attacker to access sensitive information or cause a partial denial of service DoS condition on an affected system. This vulnerability is due to improper handlin...

5.5CVSS6.8AI score0.01115EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2021/05/06 12:51 p.m.10 views

CVE-2021-1530 Cisco BroadWorks Messaging Server XML External Entity Injection Vulnerability

A vulnerability in the web-based management interface of Cisco BroadWorks Messaging Server Software could allow an authenticated, remote attacker to access sensitive information or cause a partial denial of service DoS condition on an affected system. This vulnerability is due to improper handlin...

5.4CVSS6.7AI score0.01115EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/05/06 12:51 p.m.15 views

CVE-2021-1530 Cisco BroadWorks Messaging Server XML External Entity Injection Vulnerability

A vulnerability in the web-based management interface of Cisco BroadWorks Messaging Server Software could allow an authenticated, remote attacker to access sensitive information or cause a partial denial of service DoS condition on an affected system. This vulnerability is due to improper handlin...

5.4CVSS7AI score0.01115EPSS
Exploits0References1
Rows per page
Query Builder