Lucene search
K

15 matches found

Positive Technologies
Positive Technologies
added 2026/01/21 12:0 a.m.7 views

PT-2026-3788

Name of the Vulnerable Software and Affected Versions Cisco Intersight Virtual Appliance affected versions not specified Description A flaw exists in the read-only maintenance shell of the appliance that may allow a local attacker with administrative privileges to gain root access. This is caused...

6CVSS5.4AI score0.00104EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/08/31 12:0 a.m.4 views

The vulnerability of the web interface of the Cisco Intersight Virtual Appliance, a software tool for managing cloud systems, allows a perpetrator to execute arbitrary commands.

The vulnerability of the web interface for managing Cisco Intersight Virtual Appliance software lies in insufficient validation of input data during the extraction of loaded software packages. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

4.3CVSS5.9AI score0.00239EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/08/16 9:0 p.m.17 views

CVE-2023-20237

A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access internal HTTP services that are otherwise inaccessible. This vulnerability is due to insufficient restrictions on internally accessible http proxies. An attacker could exploit this...

4.3CVSS4.9AI score0.00239EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/16 12:0 a.m.4 views

PT-2023-4616 · Cisco · Cisco Intersight Virtual Appliance

Name of the Vulnerable Software and Affected Versions: Cisco Intersight Virtual Appliance affected versions not specified Description: A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access internal HTTP services that are otherwise...

4.3CVSS4.4AI score0.00239EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2021/09/10 12:0 a.m.11 views

The vulnerability of the Cisco Intersight Virtual Appliance, a software tool for managing cloud systems, related to access control deficiencies, allows an attacker to gain access to confidential internal services through an external interface.

The vulnerability of the Cisco Intersight Virtual Appliance, a software tool for managing cloud systems, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to confidential internal services through an external...

8.3CVSS7.5AI score0.00402EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/07/22 4:15 p.m.6 views

CVE-2021-1617

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

6.5CVSS6.8AI score0.01525EPSS
Exploits0References1
NVD
NVD
added 2021/07/22 4:15 p.m.25 views

CVE-2021-1617

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

6.5CVSS0.01525EPSS
Exploits0References1
NVD
NVD
added 2021/07/22 4:15 p.m.21 views

CVE-2021-1600

Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external...

8.3CVSS0.00402EPSS
Exploits0References1
OSV
OSV
added 2021/07/22 4:15 p.m.7 views

CVE-2021-1618

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

7.2CVSS6AI score0.02704EPSS
Exploits0References1
NVD
NVD
added 2021/07/22 4:15 p.m.16 views

CVE-2021-1618

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

9CVSS0.02704EPSS
Exploits0References1
Prion
Prion
added 2021/07/22 4:15 p.m.19 views

Path traversal

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

9CVSS7.5AI score0.02704EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/07/22 3:20 p.m.23 views

CVE-2021-1618 Cisco Intersight Virtual Appliance Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

6.5CVSS7.7AI score0.02704EPSS
Exploits0References1
CISA
CISA
added 2021/07/22 12:0 a.m.17 views

 Cisco Releases Security Updates

Cisco has released security updates to address multiple vulnerabilities in Intersight Virtual Appliance. An attacker could exploit these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA...

7.1AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/07/21 12:0 a.m.5 views

PT-2021-3642 · Cisco · Cisco Intersight Virtual Appliance

Name of the Vulnerable Software and Affected Versions: Cisco Intersight Virtual Appliance affected versions not specified Description: The issue is due to insufficient input validation in the web-based management interface of Cisco Intersight Virtual Appliance, allowing an authenticated, remote...

9.4CVSS7AI score0.01525EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/07/21 12:0 a.m.5 views

PT-2021-3792 · Cisco · Cisco Intersight Virtual Appliance

Name of the Vulnerable Software and Affected Versions: Cisco Intersight Virtual Appliance affected versions not specified Description: The issue is due to insufficient input validation in the web-based management interface of Cisco Intersight Virtual Appliance, allowing an authenticated, remote...

9.4CVSS7.4AI score0.02704EPSS
Exploits0References5
Rows per page
Query Builder