Lucene search
K

208 matches found

Cvelist
Cvelist
added 2024/11/15 3:30 p.m.21 views

CVE-2022-20948 Cisco BroadWorks Hosted Thin Receptionist Cross-Site Scripting Vulnerability

A vulnerability in the web management interface of Cisco BroadWorks Hosted Thin Receptionist could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient user input validation. An attacker cou...

5.4CVSS0.00418EPSS
Exploits0References2
NVD
NVD
added 2024/11/15 3:15 p.m.10 views

CVE-2023-20125

A vulnerability in the local interface of Cisco BroadWorks Network Server could allow an unauthenticated, remote attacker to exhaust system resources, causing a denial of service DoS condition. This vulnerability exists because rate limiting does not occur for certain incoming TCP connections. An...

8.6CVSS0.00914EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/15 2:58 p.m.10 views

CVE-2023-20125 Cisco BroadWorks Network Server TCP Denial of Service Vulnerability

A vulnerability in the local interface of Cisco BroadWorks Network Server could allow an unauthenticated, remote attacker to exhaust system resources, causing a denial of service DoS condition. This vulnerability exists because rate limiting does not occur for certain incoming TCP connections. An...

8.6CVSS7AI score0.00914EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/15 2:58 p.m.29 views

CVE-2023-20125 Cisco BroadWorks Network Server TCP Denial of Service Vulnerability

A vulnerability in the local interface of Cisco BroadWorks Network Server could allow an unauthenticated, remote attacker to exhaust system resources, causing a denial of service DoS condition. This vulnerability exists because rate limiting does not occur for certain incoming TCP connections. An...

8.6CVSS0.00914EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/15 12:0 a.m.2 views

Cisco BroadWorks 资源管理错误漏洞

Cisco BroadWorks is a carrier-grade unified communications software platform from Cisco. It is used to deploy cloud calls from public network platforms on any type of wired or wireless network architecture. A resource management error vulnerability exists in Cisco BroadWorks that stems from certa...

8.6CVSS6.8AI score0.00914EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/02/06 12:0 a.m.5 views

The vulnerability in the web interface for managing Cisco BroadWorks Xtended Services Platform and BroadWorks Application Delivery Platform allows a attacker to perform cross-site scripting attacks.

The vulnerability in the web interface of the Cisco TelePresence Management Suite software management platform exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.6AI score0.00355EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2024/01/17 5:15 p.m.4 views

CVE-2024-20270

A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This...

5.4CVSS6AI score0.00355EPSS
Exploits0References1
Prion
Prion
added 2024/01/17 5:15 p.m.23 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This...

4.9CVSS6AI score0.00355EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2024/01/17 4:53 p.m.5 views

CVE-2024-20270

A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This...

4.8CVSS5.2AI score0.00355EPSS
Exploits0References1
CVE
CVE
added 2024/01/17 4:53 p.m.64 views

CVE-2024-20270

CVE-2024-20270 affects Cisco BroadWorks Application Delivery Platform and BroadWorks Xtended Services Platform. The vulnerability is a stored XSS in the web-based management interface caused by improper input validation, exploitable by a user via a crafted link; successful exploitation could run ...

5.4CVSS5.2AI score0.00355EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/17 4:53 p.m.20 views

CVE-2024-20270

A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This...

4.8CVSS5.4AI score0.00355EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/01/11 12:0 a.m.5 views

Cisco BroadWorks Application Security Vulnerability

Cisco BroadWorks Application is an enterprise-class calling and collaboration platform from Cisco. A security vulnerability exists in the Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform, which stems from a vulnerability in the web-based management...

5.4CVSS5.7AI score0.00355EPSS
Exploits0References4
Cisco
Cisco
added 2024/01/10 4:0 p.m.21 views

Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This...

4.8CVSS5.3AI score0.00355EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/01/10 12:0 a.m.4 views

PT-2024-1511 · Cisco · Cisco Broadworks Xtended Services Platform +2

Name of the Vulnerable Software and Affected Versions: Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform affected versions not specified Cisco NX-OS Software affected versions not specified Description: A vulnerability in the web-based management...

5.5CVSS6.7AI score0.00355EPSS
Exploits0References7
The Hacker News
The Hacker News
added 2023/09/08 11:26 a.m.64 views

Cisco Issues Urgent Fix for Authentication Bypass Bug Affecting BroadWorks Platform

Cisco has released security fixes to address multiple security flaws, including a critical bug, that could be exploited by a threat actor to take control of an affected system or cause a denial-of service DoS condition. The most severe of the issues is CVE-2023-20238, which has the maximum CVSS...

10CVSS7.4AI score0.21583EPSS
Exploits2
BDU FSTEC
BDU FSTEC
added 2023/09/08 12:0 a.m.4 views

The vulnerability affects the SSO implementation of the Cisco BroadWorks collaboration platform and Cisco BroadWorks Xtended Services software. This allows a hacker to gain full access to the vulnerable platform.

The vulnerability of the SSO implementation for Cisco BroadWorks collaborative work platforms and Cisco BroadWorks Xtended Services software involves deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to gain full access to the vulnerable...

10CVSS8AI score0.15324EPSS
Exploits0References2Affected Software2
CISA
CISA
added 2023/09/07 12:0 p.m.6 views

Cisco Releases Security Advisories for Multiple Products

Cisco has released security advisories to address vulnerabilities affecting multiple Cisco products. A cyber threat actor can exploit some of these vulnerabilities to take control of an affected system or cause a denial-of service condition. CISA encourages users and administrators to review the...

7.7AI score
Exploits0References2
OSV
OSV
added 2023/09/06 6:15 p.m.5 views

CVE-2023-20238

A vulnerability in the single sign-on SSO implementation of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote attacker to forge the credentials required to access an affected system. This vulnerability is due to th...

9.8CVSS5.9AI score0.15324EPSS
Exploits0References1
NVD
NVD
added 2023/09/06 6:15 p.m.25 views

CVE-2023-20238

A vulnerability in the single sign-on SSO implementation of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote attacker to forge the credentials required to access an affected system. This vulnerability is due to th...

10CVSS9.7AI score0.15324EPSS
Exploits0References1
Prion
Prion
added 2023/09/06 6:15 p.m.28 views

Design/Logic Flaw

A vulnerability in the single sign-on SSO implementation of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote attacker to forge the credentials required to access an affected system. This vulnerability is due to th...

7.5CVSS9.5AI score0.15324EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder