CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Summary IBM Cloud Private is vulnerable to a MongoDB vulnerability Vulnerability Details CVEID: CVE-2020-7921 DESCRIPTION: MongoDB Server could allow a remote authenticated attacker to bypass security restrictions, caused by improper serialization of internal state in the authorization subsystem...

5.3CVSS1.1AI score0.00179EPSS

Exploits0Affected Software1

Debian CVE•added 2020/05/06 2:55 p.m.•18 views

CVE-2020-7921

Removed by vendor...

5.3CVSS5.4AI score0.00179EPSS

Exploits0

Tenable Nessus•added 2019/08/20 12:0 a.m.•26 views

Cisco IOS XE Software Privilege Escalation Vulnerability

According to its self-reported version, Cisco IOS XE Software is affected by following vulnerability - A vulnerability in the authorization subsystem of Cisco IOS XE Software could allow an authenticated but unprivileged level 1, remote attacker to run privileged Cisco IOS commands by using the w...

9CVSS8.2AI score0.0055EPSS

Exploits0References4

Vulnrichment•added 2019/03/28 12:15 a.m.•8 views

CVE-2019-1754 Cisco IOS XE Software Privilege Escalation Vulnerability

A vulnerability in the authorization subsystem of Cisco IOS XE Software could allow an authenticated but unprivileged level 1, remote attacker to run privileged Cisco IOS commands by using the web UI. The vulnerability is due to improper validation of user privileges of web UI users. An attacker...

8.8CVSS7.5AI score0.0055EPSS

Exploits0References2

CVE•added 2019/03/28 12:15 a.m.•72 views

CVE-2019-1754

Summary of CVE-2019-1754 ( Cisco IOS XE Privilege Escalation ) : A vulnerability in the authorization subsystem of Cisco IOS XE Software could allow an authenticated but unprivileged (level 1) user to run privileged Cisco IOS commands via the Web UI. The issue arises from improper validation of w...

9CVSS8.8AI score0.0055EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2019/01/27 12:0 a.m.•1 views

PT-2019-5513 · Mongodb +1 · Mongodb Server +2

Name of the Vulnerable Software and Affected Versions: MongoDB Server versions 3.6.0 through 3.6.17 MongoDB Server versions 4.0.0 through 4.0.14 MongoDB Server versions 4.2.0 through 4.2.2 MongoDB Server versions 4.3.0 through 4.3.2 Description: The issue is related to improper serialization of...

7.5CVSS5.8AI score0.00484EPSS

Exploits2References31

Cvelist•added 2018/12/24 2:0 p.m.•14 views

CVE-2018-15465 Cisco Adaptive Security Appliance Software Privilege Escalation Vulnerability

A vulnerability in the authorization subsystem of Cisco Adaptive Security Appliance ASA Software could allow an authenticated, but unprivileged levels 0 and 1, remote attacker to perform privileged actions by using the web management interface. The vulnerability is due to improper validation of...

8.1CVSS8.1AI score0.00289EPSS

Exploits1References3

CNVD•added 2018/12/21 12:0 a.m.•1 views

Cisco Adaptive Security Appliances Software authorization subsystem remote elevation of privilege vulnerability

Cisco Adaptive Security Appliances ASA, Adaptive Security Appliances Software is a set of Cisco Cisco running in the firewall operating system. authorization subsystem is one of the authorization subsystem. A remote elevation of privilege vulnerability exists in the authorization subsystem in Cis...

8.1CVSS7.3AI score0.00289EPSS

Exploits1References1