CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cisco Mobility Express Software is a suite of software from Cisco that is used in Cisco wireless access point devices. A cross-site request forgery vulnerability exists in the web-based management interface of Cisco Mobility Express Software. An attacker could exploit this vulnerability by tricki...

8.1CVSS6.8AI score0.00293EPSS

Exploits0References1

CISA•added 2020/04/16 12:0 a.m.•9 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the...

7.8AI score

Exploits0References9

OSV•added 2020/04/15 9:15 p.m.•0 views

CVE-2020-3261

A vulnerability in the web-based management interface of Cisco Mobility Express Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system. The vulnerability is due to insufficient CSRF protections for the web-based managemen...

6.5CVSS6.9AI score

Exploits0References1

NVD•added 2020/04/15 9:15 p.m.•9 views

CVE-2020-3261

8.1CVSS7.3AI score0.00293EPSS

Exploits0References1

Prion•added 2020/04/15 9:15 p.m.•11 views

Cross site request forgery (csrf)

4.3CVSS6.8AI score0.00293EPSS

Exploits0References1Affected Software17

Vulnrichment•added 2020/04/15 8:11 p.m.•11 views

CVE-2020-3261 Cisco Mobility Express Software Cross-Site Request Forgery Vulnerability

8.1CVSS7.5AI score0.00293EPSS

Exploits0References1

CVE•added 2020/04/15 8:11 p.m.•51 views

CVE-2020-3261

CVE-2020-3261 refers to a CSRF vulnerability in Cisco Mobility Express Software’s web-based management interface. The issue arises from insufficient CSRF protections, enabling an unauthenticated attacker to trick an active session user into performing arbitrary actions, including configuration ch...

8.1CVSS7.3AI score0.00293EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/04/15 8:11 p.m.•11 views

CVE-2020-3261 Cisco Mobility Express Software Cross-Site Request Forgery Vulnerability

8.1CVSS6.8AI score0.00293EPSS

Exploits0References1

Cisco•added 2020/04/15 4:0 p.m.•16 views

Cisco Mobility Express Software Cross-Site Request Forgery Vulnerability

8.1CVSS1.5AI score0.00293EPSS

Exploits0References1

CNVD•added 2018/10/19 12:0 a.m.•1 views

Mobility Express Software Denial of Service Vulnerability in Multiple Cisco Products

Cisco Aironet 1560 Series Access Point and others are wireless access point devices from Cisco. Mobility Express ME Software is a set of management and control software running on it. A security vulnerability exists in the ME Software in several Cisco products. An attacker in close physical...

6.8CVSS5.6AI score0.00152EPSS

Exploits0References1

CNVD•added 2018/05/04 12:0 a.m.•1 views

Cisco Aironet suffers from a power lift vulnerability

The Cisco Aironet 1800, 2800, and 3800 Series Access Points are different families of wireless access point devices from Cisco, Inc.Mobility Express Software is a set of management and control software that runs on them. An extraction vulnerability exists in the management and assignment of defau...

7.5CVSS6.8AI score0.01278EPSS

Exploits0References1

CNVD•added 2018/05/04 12:0 a.m.•2 views

Cisco Aironet suffers from a denial of service vulnerability (CNVD-2018-08990)

The Cisco Aironet 1810, 1830, and 1850 Series Access Points are different families of wireless access point devices from Cisco, Inc.Mobility Express Software is a set of management and control software that runs on them. The Mobility Express Software versions 8.4.100.0, 8.5.103.0, and 8.5.105.0 o...

8.6CVSS6.8AI score0.01172EPSS

Exploits0References1

OSV•added 2018/05/02 10:29 p.m.•1 views

CVE-2018-0235

A vulnerability in the 802.11 frame validation functionality of the Cisco Wireless LAN Controller WLC could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service DoS condition. The vulnerability is due to incomplete input...

7.4CVSS5.8AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by