33 matches found
EUVD-2017-12948
Malware in sbrugna...
EUVD-2020-24532
Malware in sbrugna...
EUVD-2016-10033
Malware in sbrugna...
EUVD-2016-10009
Malware in sbrugna...
EUVD-2016-10032
Malware in sbrugna...
Cisco Mobility Express Software Cross-Site Request Forgery Vulnerability
Cisco Mobility Express Software is a suite of software from Cisco that is used in Cisco wireless access point devices. A cross-site request forgery vulnerability exists in the web-based management interface of Cisco Mobility Express Software. An attacker could exploit this vulnerability by tricki...
CVE-2020-3261
A vulnerability in the web-based management interface of Cisco Mobility Express Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system. The vulnerability is due to insufficient CSRF protections for the web-based managemen...
Cross site request forgery (csrf)
A vulnerability in the web-based management interface of Cisco Mobility Express Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system. The vulnerability is due to insufficient CSRF protections for the web-based managemen...
CVE-2020-3261
CVE-2020-3261 refers to a CSRF vulnerability in Cisco Mobility Express Software’s web-based management interface. The issue arises from insufficient CSRF protections, enabling an unauthenticated attacker to trick an active session user into performing arbitrary actions, including configuration ch...
The software vulnerabilities of Cisco Mobility Express access points from the Cisco Aironet Access Point series 1560, 1800, 2800, and 3800 allow a intruder to cause service interruptions.
The vulnerability of the Cisco Mobility Express software in Cisco Aironet Access Points of the 1560, 1800, 2800, and 3800 series is caused by errors in traffic processing. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...
Input validation
A vulnerability in the 802.11 frame validation functionality of the Cisco Wireless LAN Controller WLC could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service DoS condition. The vulnerability is due to incomplete input...
CVE-2018-0234
A vulnerability in the implementation of Point-to-Point Tunneling Protocol PPTP functionality in Cisco Aironet 1810, 1830, and 1850 Series Access Points could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The...
CVE-2018-0226
A vulnerability in the assignment and management of default user accounts for Secure Shell SSH access to Cisco Aironet 1800, 2800, and 3800 Series Access Points that are running Cisco Mobility Express Software could allow an authenticated, remote attacker to gain elevated privileges on an affecte...
CVE-2018-0226
A vulnerability in the assignment and management of default user accounts for Secure Shell SSH access to Cisco Aironet 1800, 2800, and 3800 Series Access Points that are running Cisco Mobility Express Software could allow an authenticated, remote attacker to gain elevated privileges on an affecte...
CVE-2018-0234
A vulnerability in the implementation of Point-to-Point Tunneling Protocol PPTP functionality in Cisco Aironet 1810, 1830, and 1850 Series Access Points could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The...
CVE-2018-0235
A vulnerability in the 802.11 frame validation functionality of the Cisco Wireless LAN Controller WLC could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service DoS condition. The vulnerability is due to incomplete input...
The vulnerability of Cisco Mobility Express Software for Cisco Aironet 1830 Series and 1850 Series access points, related to the use of pre-installed credentials, allows a perpetrator to gain full control over the device.
The vulnerability of Cisco Mobility Express Software for Cisco Aironet 1830 Series and 1850 Series access points stems from the ability to connect to the device using pre-installed credentials, regardless of the device’s configuration master, subordinate, or standalone access point. Exploiting th...
Cisco Mobility Express Software Default Credential Security Bypass Vulnerability
Cisco Mobility Express Software is a wireless networking solution. A security vulnerability exists in the implementation of Cisco Mobility Express Software that Cisco Aironet 1830 Series, Cisco Aironet 1850 Series Access Points devices are running due to default credentials. An unauthenticated...
CVE-2016-9197
A vulnerability in the CLI command parser of the Cisco Mobility Express 2800 and 3800 Series Wireless LAN Controllers could allow an authenticated, local attacker to obtain access to the underlying operating system shell with root-level privileges. More Information: CSCvb70351. Known Affected...
Cisco Mobility Express 2800 and 3800 Series Local Security Bypass Vulnerability
Cisco Mobility Express 2800 and 3800 Access Points are wireless products based on the Mobility Express solution from Cisco. A local security bypass vulnerability exists in the Cisco Mobility Express 2800 and 3800 series, which could be exploited by an attacker to bypass certain security...