2877 matches found
Authentication flaw
Apache Shiro before 1.5.3, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass...
UBUNTU-CVE-2020-11989
Apache Shiro before 1.5.3, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass...
CVE-2020-11989
Apache Shiro before 1.5.3, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass...
CVE-2020-11989
Apache Shiro before 1.5.3, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass...
Cisco Catalyst 9800 Series Wireless Controllers IOS XE Input Validation Error Vulnerability
Cisco IOS XE is the United States Cisco Cisco company's set of operating system developed for its network equipment. An input validation error vulnerability exists in the Flexible NetFlow version 9 packet processor for IOS XE in Cisco Catalyst 9800 Series Wireless Controllers. An attacker could...
CVE-2020-3257
Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 that are running Cisco IOS Software could allow an attacker to cause a denial of service DoS condition...
CVE-2020-3206
A vulnerability in the handling of IEEE 802.11w Protected Management Frames PMFs of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerabilit...
Design/Logic Flaw
A vulnerability in the handling of IEEE 802.11w Protected Management Frames PMFs of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerabilit...
Design/Logic Flaw
A vulnerability in the hardware crypto driver of Cisco IOS XE Software for Cisco 4300 Series Integrated Services Routers and Cisco Catalyst 9800-L Wireless Controllers could allow an unauthenticated, remote attacker to disconnect legitimate IPsec VPN sessions to an affected device. The...
CVE-2020-3221 Cisco IOS XE Software Flexible NetFlow Version 9 Denial of Service Vulnerability
A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper...
CVE-2020-3221 Cisco IOS XE Software Flexible NetFlow Version 9 Denial of Service Vulnerability
A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper...
CVE-2020-3221
Cisco IOS XE Software on Catalyst 9800 Series Wireless Controllers has a DoS vulnerability in the Flexible NetFlow Version 9 packet processor due to improper validation of NetFlow V9 records. An unauthenticated remote attacker can send malformed NetFlow V9 packets to the CAPWAP data port, causing...
CVE-2020-3206
CVE-2020-3206 affects Cisco Catalyst 9800 Series Wireless Controllers running IOS XE. The issue is a failure to properly validate IEEE 802.11w Protected Management Frames (PMFs), allowing an unauthenticated, adjacent attacker to terminate a single valid user connection on an affected device. Mult...
CVE-2020-3206 Cisco IOS XE Software Catalyst 9800 Series Wireless Controllers Denial of Service Vulnerability
A vulnerability in the handling of IEEE 802.11w Protected Management Frames PMFs of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerabilit...
CVE-2020-3203
Cisco IOS XE on Catalyst 9800 Series Wireless Controllers is affected by CVE-2020-3203 due to a flaw in the locally significant certificate (LSC) provisioning feature, where incorrect processing of PKI/SSL packets can cause a memory leak. An unauthenticated remote attacker could send crafted SSL ...
CVE-2020-3203 Cisco IOS XE Software Catalyst 9800 Series Wireless Controllers Denial of Service Vulnerability
A vulnerability in the locally significant certificate LSC provisioning feature of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a memory leak that could lead to a denial of service DoS condition. Th...
Cisco IOS XE Software Catalyst 9800 Series Wireless Controllers Denial of Service Vulnerability
A vulnerability in the handling of IEEE 802.11w Protected Management Frames PMFs of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerabilit...
Cisco IOS XE Software Catalyst 9800 Series Wireless Controllers Denial of Service Vulnerability
A vulnerability in the locally significant certificate LSC provisioning feature of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a memory leak that could lead to a denial of service DoS condition. Th...
Cisco IOS XE Software Flexible NetFlow Version 9 Denial of Service Vulnerability
A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper...
The vulnerability of the Border Gateway Protocol implementation in microprogramming-based network interface controllers from Cisco Adaptive Security Appliance and Cisco Firepower Threat Defense allows attackers to induce service failures.
The vulnerability of the Border Gateway Protocol implementation in microprogramming systems for Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor, operating remotely...