Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/02/13 12:0 a.m.8 views

Cisco Small Business Series Switches Session Credentials Replay (CVE-2021-34739)

A vulnerability in the web-based management interface of multiple Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to replay valid user session credentials and gain unauthorized access to the web-based management interface of an affected device. This...

8.1CVSS8.1AI score0.01617EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/05/24 12:0 a.m.6 views

The vulnerability in the web interface for managing microprogrammed software in Cisco Small Business Series switches allows a hacker to trigger a service failure.

The vulnerability of the web-based management interface for Microprogramming Software on Cisco Small Business Series Switches is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow a malicious actor to trigger a service failure through a specially crafted request...

8.6CVSS8.4AI score0.01183EPSS
Exploits0References3Affected Software6
Malwarebytes
Malwarebytes
added 2023/05/22 2:0 a.m.119 views

Update now: 9 vulnerabilities impact Cisco Small Business Series

Vulnerabilities have been found and fixed in the web-based user interface of various Cisco products in the Small Business Series. These nine issues are tied to the web-based user interface of the products, and in a worst case scenario could lead to denial of service DoS conditions or arbitrary co...

7.5CVSS8.2AI score0.11101EPSS
Exploits0
CISA
CISA
added 2023/05/19 12:0 p.m.5 views

Cisco Releases Security Advisory for Small Business Series Switches

Cisco released a security advisory to address multiple vulnerabilities affecting the web-based user interface of certain Cisco Small Business Series Switcheslink is external. A remote attacker could exploit these vulnerabilities to cause a denial-of-service condition or execute arbitrary code wit...

8.4AI score
Exploits0References3
NVD
NVD
added 2023/05/18 3:15 a.m.25 views

CVE-2023-20157

Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due t...

9.8CVSS9.4AI score0.01183EPSS
Exploits0References1
NVD
NVD
added 2023/05/18 3:15 a.m.20 views

CVE-2023-20161

Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due t...

9.8CVSS9.4AI score0.10282EPSS
Exploits0References1
NVD
NVD
added 2023/05/18 3:15 a.m.22 views

CVE-2023-20156

Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due t...

9.8CVSS9.4AI score0.01183EPSS
Exploits0References1
NVD
NVD
added 2023/05/18 3:15 a.m.18 views

CVE-2023-20024

Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due t...

8.6CVSS9AI score0.01318EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/18 12:0 a.m.27 views

CVE-2023-20162 Cisco Small Business Series Switches Buffer Overflow Vulnerabilities

Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due t...

8.6CVSS9.9AI score0.01183EPSS
Exploits0References1
CVE
CVE
added 2023/05/18 12:0 a.m.334 views

CVE-2023-20159

CVE-2023-20159 affects the web-based user interface of Cisco Small Business Series Switches. The issue stems from improper validation of web requests, enabling an unauthenticated remote attacker to cause DoS or execute arbitrary code with root privileges. Cisco’s advisory confirms multiple relate...

9.8CVSS9.7AI score0.10282EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/18 12:0 a.m.12 views

CVE-2023-20159 Cisco Small Business Series Switches Buffer Overflow Vulnerabilities

Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due t...

8.6CVSS8.1AI score0.10282EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/18 12:0 a.m.24 views

CVE-2023-20156 Cisco Small Business Series Switches Buffer Overflow Vulnerabilities

Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due t...

8.6CVSS9.9AI score0.01183EPSS
Exploits0References1
CVE
CVE
added 2023/05/18 12:0 a.m.68 views

CVE-2023-20157

CVE-2023-20157 concerns multiple vulnerabilities in the web-based UI of Cisco Small Business Series Switches (e.g., 250/350/550 and related models). The flaws arise from improper validation of web-interface requests, enabling an unauthenticated, remote attacker to cause a DoS or to execute arbitr...

9.8CVSS9.7AI score0.01183EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2023/05/17 4:0 p.m.49 views

Cisco Small Business Series Switches Buffer Overflow Vulnerabilities

Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due t...

9.8CVSS9.2AI score0.11101EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2021/11/05 6:15 a.m.50 views

Hardcoded SSH Key in Cisco Policy Suite Lets Remote Hackers Gain Root Access

Cisco Systems has released security updates to address vulnerabilities in multiple Cisco products that could be exploited by an attacker to log in as a root user and take control of vulnerable systems. Tracked as CVE-2021-40119, the vulnerability has been rated 9.8 in severity out of a maximum of...

10CVSS9.3AI score0.04631EPSS
Exploits0
Cvelist
Cvelist
added 2021/11/04 3:40 p.m.24 views

CVE-2021-34739 Cisco Small Business Series Switches Session Credentials Replay Vulnerability

A vulnerability in the web-based management interface of multiple Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to replay valid user session credentials and gain unauthorized access to the web-based management interface of an affected device. This...

8.1CVSS8.3AI score0.01617EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/05/14 6:26 a.m.4 views

Multiple vulnerabilities in Cisco Small Business Series Wireless Access Points

Overview Cisco Small Business Series Wireless Access Points provided by Cisco Systems, Inc. contain multiple vulnerabilities listed below. Improper access control CWE-284 - CVE-2021-1400 Command injection CWE-78 - CVE-2021-1401 Shuto Imai of LAC Co., Ltd. reported this vulnerability to IPA...

9CVSS7.4AI score0.02034EPSS
Exploits0References8
Cvelist
Cvelist
added 2019/07/17 8:30 p.m.20 views

CVE-2019-1943 Cisco Small Business Series Switches Open Redirect Vulnerability

A vulnerability in the web interface of Cisco Small Business 200, 300, and 500 Series Switches software could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. The vulnerability is due to improper input validation of the parameters of an HTTP request. An attack...

4.7CVSS6.2AI score0.1051EPSS
Exploits3References2
ATTACKERKB
ATTACKERKB
added 2019/07/06 12:0 a.m.23 views

CVE-2019-1892

Cisco Small Business 200/300/500 Series Managed Switch HTTPS validation allows a memory corruption DoS Recent assessments: bwatters-r7 at July 09, 2019 5:54pm UTC reported: This is a memory corruption vulnerability that allows an attacker to send a malformed HTTPS packet, which will then generate...

7.5CVSS7.8AI score0.01772EPSS
Exploits0References2
CISA
CISA
added 2019/07/03 12:0 a.m.12 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the...

7AI score
Exploits0References10
Rows per page
Query Builder