10 matches found
EUVD-2021-21415
Malware in sbrugna...
The vulnerability of the web interface of the Cisco Nexus Insights system, which is used for automating, monitoring, and analyzing the switching structure of data centers, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the web interface of the Cisco Nexus Insights system, which is used for automating, tracking, and analyzing the switching structure of data centers, is related to the use of files and directories accessible to external parties when RBAC-based access control filters are applie...
CVE-2021-34765
A vulnerability in the web UI for Cisco Nexus Insights could allow an authenticated, remote attacker to view and download files related to the web application. The attacker requires valid device credentials. This vulnerability exists because proper role-based access control RBAC filters are not...
CVE-2021-34765
A vulnerability in the web UI for Cisco Nexus Insights could allow an authenticated, remote attacker to view and download files related to the web application. The attacker requires valid device credentials. This vulnerability exists because proper role-based access control RBAC filters are not...
Design/Logic Flaw
A vulnerability in the web UI for Cisco Nexus Insights could allow an authenticated, remote attacker to view and download files related to the web application. The attacker requires valid device credentials. This vulnerability exists because proper role-based access control RBAC filters are not...
CVE-2021-34765 Cisco Nexus Insights Authenticated Information Disclosure Vulnerability
A vulnerability in the web UI for Cisco Nexus Insights could allow an authenticated, remote attacker to view and download files related to the web application. The attacker requires valid device credentials. This vulnerability exists because proper role-based access control RBAC filters are not...
CVE-2021-34765
Cisco Nexus Insights suffers an authenticated information-disclosure vulnerability in its web UI where RBAC filters are not applied to file download actions. An attacker with valid device credentials can log in and access the directory listing to download restricted files, exposing sensitive info...
CVE-2021-34765 Cisco Nexus Insights Authenticated Information Disclosure Vulnerability
A vulnerability in the web UI for Cisco Nexus Insights could allow an authenticated, remote attacker to view and download files related to the web application. The attacker requires valid device credentials. This vulnerability exists because proper role-based access control RBAC filters are not...
Cisco Nexus Insights Authenticated Information Disclosure Vulnerability
A vulnerability in the web UI for Cisco Nexus Insights could allow an authenticated, remote attacker to view and download files related to the web application. The attacker requires valid device credentials. This vulnerability exists because proper role-based access control RBAC filters are not...
Cisco Nexus Insights安全漏洞
Cisco Nexus Insights is a Cisco product for automating, monitoring, and analyzing your data center structure in real time. A security vulnerability exists in Cisco Nexus Insights that allows an authenticated, remote attacker to view and download files associated with web applications. Valid devic...