Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-24423

Malware in sbrugna...

7.2CVSS6.6AI score0.00386EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-6611

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.01409EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.9 views

The vulnerability of the password change interface of the Cisco Connected Mobile Experiences (CMX) software allows a hacker to bypass security mechanisms.

The vulnerability of the Cisco Connected Mobile Experiences CMX password change interface is related to deficiencies in the management of registration data. Exploiting this vulnerability could allow a malicious actor to bypass security measures through a specially created API request...

5CVSS5.5AI score0.00748EPSS
Exploits0References3Affected Software1
Cisco
Cisco
added 2021/08/04 4:0 p.m.67 views

Cisco Connected Mobile Experiences Strong Authentication Requirements Enforcement Bypass

A vulnerability in the change password API of Cisco Connected Mobile Experiences CMX could allow an authenticated, remote attacker to alter their own password to a value that does not comply with the strong authentication requirements that are configured on an affected device. This vulnerability...

4.3CVSS4.9AI score0.00748EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/01/28 12:0 a.m.6 views

The vulnerability of the Cisco Connected Mobile Experiences software, related to authentication errors, allows a perpetrator to elevate their privileges and gain unauthorized access to protected information.

The vulnerability of the Cisco Connected Mobile Experiences software relates to authentication errors. Exploiting this vulnerability can allow an attacker to enhance their privileges and gain unauthorized access to protected information...

9CVSS7.6AI score0.01409EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2021/01/14 12:0 a.m.7 views

Cisco Connected Mobile Experiences User Enumeration Vulnerability

Cisco Connected Mobile Experiences CMX is an intelligent Wi-Fi solution that uses the Cisco wireless infrastructure to provide location services and location analytics to consumers' mobile devices. A user enumeration vulnerability exists in API authorization for Cisco Connected Mobile Experiences...

4.3CVSS6.9AI score0.00734EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/01/13 12:0 a.m.3 views

PT-2021-1645 · Cisco · Cisco Connected Mobile Experiences

Name of the Vulnerable Software and Affected Versions: Cisco Connected Mobile Experiences CMX affected versions not specified Description: The issue is related to a lack of authorization checks for certain API GET requests, which could allow an authenticated, remote attacker to enumerate users on...

4.3CVSS4.3AI score0.00734EPSS
Exploits0References3
OSV
OSV
added 2020/08/26 5:15 p.m.3 views

CVE-2020-3151

A vulnerability in the CLI of Cisco Connected Mobile Experiences CMX could allow an authenticated, local attacker with administrative credentials to bypass restrictions on the CLI. The vulnerability is due to insufficient security mechanisms in the restricted shell implementation. An attacker cou...

6.7CVSS5.9AI score0.00282EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/08/26 4:16 p.m.7 views

CVE-2020-3151 Cisco Connected Mobile Experiences Restricted Shell Escape Vulnerability

A vulnerability in the CLI of Cisco Connected Mobile Experiences CMX could allow an authenticated, local attacker with administrative credentials to bypass restrictions on the CLI. The vulnerability is due to insufficient security mechanisms in the restricted shell implementation. An attacker cou...

5.1CVSS7.1AI score0.00282EPSS
Exploits0References1
NVD
NVD
added 2019/01/24 3:29 p.m.22 views

CVE-2019-1645

A vulnerability in the Cisco Connected Mobile Experiences CMX software could allow an unauthenticated, adjacent attacker to access sensitive data on an affected device. The vulnerability is due to a lack of input and validation checking mechanisms for certain GET requests to API's on an affected...

4.3CVSS4.5AI score0.00519EPSS
Exploits0References2
OSV
OSV
added 2019/01/24 3:29 p.m.5 views

CVE-2019-1645

A vulnerability in the Cisco Connected Mobile Experiences CMX software could allow an unauthenticated, adjacent attacker to access sensitive data on an affected device. The vulnerability is due to a lack of input and validation checking mechanisms for certain GET requests to API's on an affected...

4.3CVSS5.8AI score0.00519EPSS
Exploits0References2
Rows per page
Query Builder