Lucene search
K

223 matches found

OSV
OSV
added 2021/12/13 4:15 p.m.16 views

CVE-2021-39939

An uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions starting from 13.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker triggering a job with a specially crafted docker image to...

6.5CVSS6.7AI score0.00907EPSS
Exploits0References2
NVD
NVD
added 2021/10/06 8:15 p.m.13 views

CVE-2021-34766

A vulnerability in the web UI of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges and create, read, update, or delete records and settings in multiple functions. This vulnerability is due to insufficient authorization of the Syst...

8.8CVSS0.00943EPSS
Exploits0References1
OSV
OSV
added 2021/10/06 8:15 p.m.5 views

CVE-2021-34766

A vulnerability in the web UI of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges and create, read, update, or delete records and settings in multiple functions. This vulnerability is due to insufficient authorization of the Syst...

8.8CVSS5.8AI score0.00943EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/10/06 7:45 p.m.18 views

CVE-2021-34766 Cisco Smart Software Manager Privilege Escalation Vulnerability

A vulnerability in the web UI of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges and create, read, update, or delete records and settings in multiple functions. This vulnerability is due to insufficient authorization of the Syst...

5.4CVSS8.8AI score0.00943EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/10/06 7:45 p.m.12 views

CVE-2021-34766 Cisco Smart Software Manager Privilege Escalation Vulnerability

A vulnerability in the web UI of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges and create, read, update, or delete records and settings in multiple functions. This vulnerability is due to insufficient authorization of the Syst...

5.4CVSS6.9AI score0.00943EPSS
Exploits0References1
Cisco
Cisco
added 2021/10/06 4:0 p.m.57 views

Cisco Smart Software Manager Privilege Escalation Vulnerability

A vulnerability in the web UI of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges and create, read, update, or delete records and settings in multiple functions. This vulnerability is due to insufficient authorization of the Syst...

5.4CVSS7AI score0.00943EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/10/06 12:0 a.m.5 views

Cisco Smart Software Manager 安全漏洞

Cisco Smart Software Manager is the United States Cisco Cisco company for the provision of license intelligent management features of the software. The software eliminates cumbersome product activation key PAK and license file management, so that the license node is no longer locked to the device...

8.8CVSS7.9AI score0.00943EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/02/16 12:0 a.m.6 views

The vulnerability in the web interface of the Cisco Smart Software Manager On-Prem administration tool allows a perpetrator to execute arbitrary commands.

The vulnerability of the web interface of the Cisco Smart Software Manager On-Prem administration tool is related to insufficient validation of entered data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with root privileges remotely...

9CVSS7.9AI score0.03964EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/16 12:0 a.m.5 views

The vulnerability in the web interface of the Cisco Smart Software Manager On-Prem administration tool allows a perpetrator to execute arbitrary commands.

The vulnerability of the web interface of the Cisco Smart Software Manager On-Prem administration tool is related to insufficient validation of entered data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with elevated privileges remotely...

10CVSS8AI score0.04383EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/09 12:0 a.m.4 views

The vulnerability in the web interface of the Cisco Smart Software Manager On-Prem administration tool allows a perpetrator to execute arbitrary commands.

The vulnerability of the web interface of the Cisco Smart Software Manager On-Prem administration tool is related to insufficient validation of entered data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with elevated privileges remotely...

10CVSS8AI score0.04383EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/09 12:0 a.m.8 views

The vulnerability in the web interface of the Cisco Smart Software Manager On-Prem software management tool allows a perpetrator to redirect users to any desired website.

The vulnerability in the web interface of the Cisco Smart Software Manager On-Prem software management tool relates to the redirection of URLs to an unreliable website. Exploiting this vulnerability allows a malicious actor to remotely redirect users to any desired website...

5.5CVSS5.5AI score0.00564EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/09 12:0 a.m.5 views

The vulnerability in the web interface of the Cisco Smart Software Manager On-Prem software management tool allows a perpetrator to execute arbitrary SQL commands.

The vulnerability of the Web interface for managing Cisco Smart Software Manager On-Prem software licenses is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL commands remotely...

6.8CVSS7.3AI score0.01247EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/08 12:0 a.m.6 views

The vulnerability in the web interface of the Cisco Smart Software Manager On-Prem administration tool allows a perpetrator to execute arbitrary commands.

The vulnerability of the web interface of the Cisco Smart Software Manager On-Prem administration tool is related to insufficient validation of entered data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with root privileges remotely...

9CVSS7.9AI score0.03964EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2021/01/22 12:0 a.m.10 views

Cisco Smart Software Manager Satellite Web UI Command Injection Vulnerability (CNVD-2021-09934)

Cisco Smart Software Manager Satellite is software designed to provide intelligent management of licenses. A command injection vulnerability exists in the WEB UI of Cisco Smart Software Manager Satellite 5.1.0 and prior versions. The vulnerability stems from the program not properly validating...

9.8CVSS8.1AI score0.03964EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/22 12:0 a.m.8 views

Cisco Smart Software Manager Satellite Web UI Command Injection Vulnerability (CNVD-2021-09933)

Cisco Smart Software Manager Satellite is software designed to provide intelligent management of licenses. A command injection vulnerability exists in the WEB UI of Cisco Smart Software Manager Satellite 5.1.0 and prior versions. The vulnerability stems from the program not properly validating...

10CVSS8AI score0.04383EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/22 12:0 a.m.7 views

Cisco Smart Software Manager Satellite Web UI Command Injection Vulnerability (CNVD-2021-09935)

Cisco Smart Software Manager Satellite is software designed to provide intelligent management capabilities for licenses. A command injection vulnerability exists in the WEB UI of Cisco Smart Software Manager Satellite 5.1.0 and prior versions. The vulnerability stems from the program not properly...

10CVSS8.1AI score0.04383EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/22 12:0 a.m.10 views

Cisco Smart Software Manager Satellite Web UI Command Injection Vulnerability

Cisco Smart Software Manager Satellite is software designed to provide intelligent management of licenses. A command injection vulnerability exists in the WEB UI of Cisco Smart Software Manager Satellite 5.1.0 and prior versions. The vulnerability stems from the program not properly validating...

9.8CVSS8.1AI score0.03964EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/22 12:0 a.m.8 views

Cisco Smart Software Manager Satellite Web UI Command Injection Vulnerability (CNVD-2021-09936)

Cisco Smart Software Manager Satellite is software designed to provide intelligent management of licenses. A command injection vulnerability exists in the WEB UI of Cisco Smart Software Manager Satellite 5.1.0 and prior versions. The vulnerability stems from the program not properly validating...

10CVSS8AI score0.04345EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/21 12:0 a.m.6 views

Cisco Smart Software Manager Satellite Static Credentials Vulnerability

Cisco Smart Software Manager Satellite is a Cisco component for Cisco product license management. A static credentials vulnerability exists in Cisco Smart Software Manager Satellite version 5.1.0 and earlier. The vulnerability stems from inadequate protection of static credentials. An attacker ca...

7.8CVSS6.6AI score0.00256EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/21 12:0 a.m.8 views

Cisco Smart Software Manager Satellite Open Redirect Vulnerability

Cisco Smart Software Manager Satellite is a Cisco component for Cisco product license management. An open redirection vulnerability exists in the web management interface of Cisco Smart Software Manager Satellite 5.0 and earlier versions. The vulnerability stems from improper validation of the...

5.4CVSS6.6AI score0.00564EPSS
Exploits0References1
Rows per page
Query Builder