CVE-2020-3484 Cisco Vision Dynamic Signage Director Directory Traversal Information Disclosure Vulnerability

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to view potentially sensitive information on an affected device. The vulnerability is due to incorrect permissions within Apache configuration. An attacke...

CVE-2020-3490 Cisco Vision Dynamic Signage Director Path Traversal Vulnerability

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative privileges to conduct directory traversal attacks and obtain read access to sensitive files on an affected system. The vulnerability...

CVE-2020-3490

The CVE-2020-3490 issue affects Cisco Vision Dynamic Signage Director. A vulnerability in the web-based management interface allows an authenticated, remote attacker with administrative privileges to perform directory traversal and read files on the underlying OS with root privileges due to impro...

CVE-2020-3485

CVE-2020-3485 describes a vulnerability in the web management software of Cisco Vision Dynamic Signage Director’s RBAC. The issue arises from improper handling of RBAC in the web interface, enabling an authenticated, remote attacker to view and delete screen content they should not access via a c...

CVE-2020-3485 Cisco Vision Dynamic Signage Director Role-Based Access Control Vulnerability

A vulnerability in the role-based access control RBAC functionality of the web management software of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker to access resources that they should not be able to access and perform actions that they should not be able to...

CVE-2020-3491 Cisco Vision Dynamic Signage Director Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative privileges to conduct a cross-site scripting XSS attack against a user of the interface on an affected device. The vulnerability exists...

CVE-2020-3491

CVE-2020-3491 affects Cisco Vision Dynamic Signage Director Web Management Interface. The root cause is improper validation of user-supplied input in the web interface, enabling an authenticated, administrative user to perform a stored XSS attack against other interface users. Impact described ac...

Cisco Vision Dynamic Signage Director Web Management Interface Path Traversal Vulnerability

Cisco Vision Dynamic Signage Director is an end-to-end dynamic signage and IPTV solution from Cisco USA. A path traversal vulnerability exists in the Web management interface in Cisco Vision Dynamic Signage Director versions prior to 6.2 SP5, which stems from the interface failing to properly...

Cisco Vision Dynamic Signage Director Web Management Interface Misconfiguration Vulnerability

Cisco Vision Dynamic Signage Director is an end-to-end dynamic signage and IPTV solution from Cisco USA. A misconfiguration vulnerability exists in the Web management interface in Cisco Vision Dynamic Signage Director versions prior to 6.2 SP5, which stems from incorrect permissions in the Apache...

Cisco Vision Dynamic Signage Director Web Management Interface Cross-Site Scripting Vulnerability

Cisco Vision Dynamic Signage Director is an end-to-end dynamic signage and IPTV solution from Cisco USA. A cross-site scripting vulnerability exists in the Web management interface in Cisco Vision Dynamic Signage Director versions prior to 6.2 SP5, which stems from the program failing to properly...

Cisco Vision Dynamic Signage Director Role-Based Access Control Vulnerability

A vulnerability in the role-based access control RBAC functionality of the web management software of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker to access resources that they should not be able to access and perform actions that they should not be able to...

Cisco Vision Dynamic Signage Director Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative privileges to conduct a cross-site scripting XSS attack against a user of the interface on an affected device. The vulnerability exists...

The vulnerability in the web interface of the Cisco Vision Dynamic Signage Director system allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Cisco Vision Dynamic Signage Director web interface management interface is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

Cisco Vision Dynamic Signage Director SQL Injection Vulnerability

Cisco Vision Dynamic Signage Director is an end-to-end dynamic signage and IPTV solution from Cisco USA. A SQL vulnerability exists in the Web management interface of Cisco Vision Dynamic Signage Director prior to version 6.2 SP5. The vulnerability stems from the program's failure to correctly...

Sql injection

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative credentials to conduct SQL injection attacks on an affected system. The vulnerability is due to improper validation of user-submitted...

CVE-2020-3450 Cisco Vision Dynamic Signage Director SQL Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative credentials to conduct SQL injection attacks on an affected system. The vulnerability is due to improper validation of user-submitted...

CVE-2020-3450 Cisco Vision Dynamic Signage Director SQL Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative credentials to conduct SQL injection attacks on an affected system. The vulnerability is due to improper validation of user-submitted...

Cisco Vision Dynamic Signage Director SQL Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative credentials to conduct SQL injection attacks on an affected system. The vulnerability is due to improper validation of user-submitted...

The vulnerability of the REST API interface implementation of the Cisco Vision Dynamic Signage Director digital content management system allows a hacker to gain access to certain parts of the application’s software interface.

The vulnerability of the REST API interface of the Cisco Vision Dynamic Signage Director digital content management system is related to the failure of authentication. Exploiting this vulnerability may allow a malicious actor to gain access to certain parts of the application’s software interface...

Cisco Vision Dynamic Signage Director CVE-2019-16004 Authentication Bypass Vulnerability

Description Cisco Vision Dynamic Signage Director is prone to an authentication-bypass vulnerability. An attacker can exploit this issue to bypass authentication mechanism and perform unauthorized actions with administrative privileges. This may lead to further attacks. This issue is being tracke...