Lucene search
+L

11 matches found

attackerkb
attackerkb
added 2025/05/07 6:15 p.m.7 views

CVE-2025-20198

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...

8.2CVSS5.8AI score0.00141EPSS
Exploits0References2Affected Software1
osv
osv
added 2025/05/07 6:15 p.m.5 views

CVE-2025-20200

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...

8.2CVSS5.8AI score0.00145EPSS
Exploits0References1
attackerkb
attackerkb
added 2025/05/07 6:15 p.m.6 views

CVE-2025-20186

A vulnerability in the web-based management interface of the Wireless LAN Controller feature of Cisco IOS XE Software could allow an authenticated, remote attacker with a lobby ambassador user account to perform a command injection attack against an affected device. This vulnerability is due to...

8.8CVSS7AI score0.01159EPSS
Exploits0References2Affected Software1
osv
osv
added 2020/06/03 6:15 p.m.7 views

CVE-2020-3210

A vulnerability in the CLI parsers of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 could allow an authenticated, local attacker to execute arbitrary shell commands on the Virtual Device Server...

6.7CVSS6AI score0.00426EPSS
Exploits0References1
osv
osv
added 2020/06/03 6:15 p.m.4 views

CVE-2020-3208

A vulnerability in the image verification feature of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs could allow an authenticated, local attacker to boot a malicious software image on an affected device. The vulnerability is due to insufficient acce...

6.7CVSS6.7AI score0.00322EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2019/10/02 12:0 a.m.7 views

PT-2019-3616 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Description: A vulnerability in the Secure Copy SCP feature could allow an authenticated, remote attacker to cause a denial of service DoS condition. The issue is...

6.8CVSS5.7AI score0.01488EPSS
Exploits0References5
osv
osv
added 2019/08/07 6:15 a.m.5 views

CVE-2019-1914

A vulnerability in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an authenticated, remote attacker to perform a command injection attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this...

7.2CVSS7.3AI score0.24852EPSS
Exploits2References2
osv
osv
added 2018/10/05 2:29 p.m.4 views

CVE-2018-15368

A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the underlying Linux shell of an affected device and execute arbitrary commands with root privileges on the device. The vulnerability is due to the affected software improperl...

6.7CVSS6AI score0.0039EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2018/04/06 12:0 a.m.5 views

The vulnerability of the Cisco IOS XE operating system, related to the use of a pre-installed account, allows a perpetrator to gain access to the device.

The vulnerability of the Cisco IOS XE operating system is related to the use of a pre-installed user account. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to the device with privileges level 15...

10CVSS5.5AI score0.04823EPSS
Exploits0References4Affected Software1
cnvd
cnvd
added 2018/03/29 12:0 a.m.4 views

Cisco IOS XE Software Override Access Vulnerability

Cisco IOS XE Software is an operating system developed by Cisco for its network devices. A security vulnerability exists in Cisco IOS XE Software version 16.x, which arises from the use of a default username and password for an account with level 15 privileges. A remote attacker could use this...

10CVSS7AI score0.04823EPSS
Exploits0References1
attackerkb
attackerkb
added 2018/01/18 6:29 a.m.1 views

CVE-2018-0088

A vulnerability in one of the diagnostic test CLI commands on Cisco Industrial Ethernet 4010 Series Switches running Cisco IOS Software could allow an authenticated, local attacker to impact the stability of the device. This could result in arbitrary code execution or a denial of service DoS...

7.2CVSS6.7AI score0.0039EPSS
Exploits0References3
Rows per page
Query Builder