Lucene search
K

106 matches found

Cvelist
Cvelist
added 2025/05/21 4:20 p.m.14 views

CVE-2025-20257 Cisco Secure Network Analytics API Authorization Vulnerability

A vulnerability in an API subsystem of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with low privileges to generate fraudulent findings that are used to generate alarms and alerts on an affected product. Th...

6.5CVSS0.00277EPSS
Exploits0References1
CVE
CVE
added 2025/05/21 4:20 p.m.72 views

CVE-2025-20257

Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager are affected by CVE-2025-20257. The issue stems from insufficient authorization enforcement on a specific API, allowing an authenticated, low-privilege user to perform crafted API calls and generate fraudule...

6.5CVSS6.4AI score0.00277EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/05/21 4:19 p.m.22 views

CVE-2025-20256 Cisco Secure Network Analytics Manager Server-Side Template Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating...

6.5CVSS0.00498EPSS
Exploits0References1
CVE
CVE
added 2025/05/21 4:19 p.m.71 views

CVE-2025-20256

CVE-2025-20256 affects Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager. The issue is in the web-based management interface, caused by insufficient input validation in specific fields. An authenticated administrator can send crafted input to an affected de...

7.2CVSS6.8AI score0.00498EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/21 4:19 p.m.13 views

CVE-2025-20256 Cisco Secure Network Analytics Manager Server-Side Template Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating...

6.5CVSS7.7AI score0.00498EPSS
Exploits0References1
Cisco
Cisco
added 2025/05/21 4:0 p.m.10 views

Cisco Secure Network Analytics Manager API Authorization Vulnerability

A vulnerability in an API subsystem of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with low privileges to generate fraudulent findings that are used to generate alarms and alerts on an affected product. Th...

6.5CVSS7AI score0.00277EPSS
Exploits0References1
Cisco
Cisco
added 2025/05/21 4:0 p.m.15 views

Cisco Secure Network Analytics Manager Privilege Escalation Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating...

6.5CVSS7.9AI score0.00498EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/21 12:0 a.m.3 views

Cisco Secure Network Analytics Manager和Cisco Secure Network Analytics Virtual Manager 安全漏洞

Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager are both products of Cisco, Inc.Cisco Secure Network Analytics Manager is a secure network analytics manager. Cisco Secure Network Analytics Manager is a secure network analytics manager.Cisco Secure Network...

6.5CVSS6.6AI score0.00277EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/21 12:0 a.m.6 views

PT-2025-22380 · Cisco · Cisco Secure Network Analytics Virtual Manager +1

Name of the Vulnerable Software and Affected Versions: Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager affected versions not specified Description: A vulnerability in the web-based management interface could allow an authenticated, remote attacker with...

8.5CVSS7AI score0.00498EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/05/21 12:0 a.m.5 views

PT-2025-22381 · Cisco · Cisco Secure Network Analytics Manager +1

Name of the Vulnerable Software and Affected Versions: Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager affected versions not specified Description: A vulnerability in the API subsystem could allow an authenticated, remote attacker with low privileges to...

6.8CVSS6.1AI score0.00277EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/05/21 12:0 a.m.4 views

Cisco Secure Network Analytics Manager和Cisco Secure Network Analytics Virtual Manager 注入漏洞

Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager are both products of Cisco Corporation.Cisco Secure Network Analytics Manager is a secure network analytics manager. Cisco Secure Network Analytics Manager is a secure network analytics manager.Cisco Secure...

7.2CVSS7.3AI score0.00498EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/04/30 12:0 a.m.7 views

The vulnerability in the web-based interface of the Cisco Secure Network Analytics system (previously known as Cisco Stealthwatch Enterprise) allows a malicious actor to elevate their privileges to the root level.

The vulnerability in the web-based interface of the Cisco Secure Network Analytics system, previously known as Cisco Stealthwatch Enterprise, is related to errors in verifying the cryptographic signature. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root...

6.2CVSS5.5AI score0.00327EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/25 11:41 p.m.7 views

CVE-2025-20178

A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. This vulnerability is due to insufficient integrity...

7.2CVSS7.7AI score0.00327EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/04/16 4:15 p.m.3 views

CVE-2025-20178

A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. This vulnerability is due to insufficient integrity...

7.2CVSS6.1AI score0.00327EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/04/16 4:15 p.m.3 views

CVE-2025-20178

A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. This vulnerability is due to insufficient integrity...

7.2CVSS6.1AI score0.00327EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 4:15 p.m.16 views

CVE-2025-20178

A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. This vulnerability is due to insufficient integrity...

7.2CVSS0.00327EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/16 4:7 p.m.15 views

CVE-2025-20178 Cisco Secure Network Analytics Privilege Escalation Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. This vulnerability is due to insufficient integrity...

6CVSS0.00327EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/16 4:7 p.m.7 views

CVE-2025-20178 Cisco Secure Network Analytics Privilege Escalation Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. This vulnerability is due to insufficient integrity...

6CVSS8AI score0.00327EPSS
Exploits0References1
CVE
CVE
added 2025/04/16 4:7 p.m.64 views

CVE-2025-20178

CVE-2025-20178 affects Cisco Secure Network Analytics (web-based management interface). An authenticated attacker with valid administrative credentials can restore a malicious backup file to the device, exploiting insufficient integrity checks in device backups to obtain shell access as root on t...

7.2CVSS6.4AI score0.00327EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2025/04/16 4:0 p.m.12 views

Cisco Secure Network Analytics Privilege Escalation Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. This vulnerability is due to insufficient integrity...

6CVSS7.9AI score0.00327EPSS
Exploits0References1
Rows per page
Query Builder