Lucene search
K

327 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2017-15688

Malware in sbrugna...

8.8CVSS8.8AI score0.00797EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.22 views

Cisco WAP371 Wireless Access Point Command Injection (cisco-sa-sb-wap-inject-bHStWgXO)

According to its self-reported version, Cisco WAP371 Wireless Access Point Command Injection is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid188066;...

7.2CVSS7.4AI score0.01358EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/12/21 12:0 a.m.68 views

Cisco Identity Services Engine RCE (cisco-sa-struts-C2kCMkmT)

An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. Please see the included Cisco BIDs and Cisco Security Advisory for more information. Note that Nessu...

9.8CVSS8.8AI score0.80819EPSS
Exploits15References3
Tenable Nessus
Tenable Nessus
added 2023/06/07 12:0 a.m.24 views

Cisco Identity Services Engine 3.1.x < 3.1P6, 3.2.x < 3.2P2 Arbitrary File Delete and File Read (cisco-sa-ise-file-delete-read-PK5ghDDd)

According to its self-reported version, Cisco Identity Services is affected by a vulnerability in the web-based management interface. These allow an authenticated, remote attacker to delete or read arbitrary files on the underlying operating system. To exploit these vulnerabilities, an attacker...

6.5CVSS5.8AI score0.00399EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.96 views

Cisco Wireless LAN Controller AireOS Software FIPS Mode DoS (cisco-sa-wlc-dos-mKGRrsCB)

According to its self-reported version, Cisco Wireless LAN Controller WLC is affected by a denial of service Dos vulnerability. An unauthenticated, network-adjacent attacker can send specially crafted packets to an affected device causing it to crash. Please see the included Cisco BIDs and Cisco...

7.4CVSS6.6AI score0.00476EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/07/13 12:0 a.m.35 views

Cisco Unity Connection Improper Access Control (cisco-sa-ucm-access-dMKvV2DY)

The version of Cisco Unity Connection installed on the remote host is 14.x prior to 14SU2. It is, therefore, affected by an improper access control vulnerability. An authenticated attacker with read-only privileges can exploit this vulnerability to perform a set of administrative actions they...

9CVSS7.9AI score0.01166EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/11/16 12:0 a.m.25 views

Cisco Firepower Threat Defense Software Resource Exhaustion DoS (cisco-sa-asa-ftd-dos-Unk689XY)

According to its self-reported version, Cisco FTD Software is affected by a denial of service DoS vulnerability in memory management due to improper resource management when connection rates are high. An unauthenticated, remote attacker can exploit this, by opening a significant number of...

8.6CVSS7.2AI score0.01386EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/11/03 12:0 a.m.22 views

Cisco Firepower Management Center Software Authenticated Directory Traversal (cisco-sa-fmc-dir-traversal-95UyW5tk)

The version of Cisco Firepower Management Center installed on the remote host is affected by a directory traversal vulnerability as referenced in the cisco-sa-fmc-dir-traversal-95UyW5tk advisory. An authenticated, remote attacker can exploit this, by sending a crafted HTTPS request that contains...

8.1CVSS8AI score0.01908EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/11/02 12:0 a.m.28 views

Cisco Adaptive Security Appliance Software Identity-Based Rule Bypass (cisco-sa-asaftd-rule-bypass-ejjOgQEY)

According to its self-reported version, Cisco ASA Software is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information. TRUSTED...

5.3CVSS5.7AI score0.01003EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/06/29 12:0 a.m.18 views

Cisco SD-WAN vManage Software Privilege Escalation (cisco-sa-sdwan-privesc-vman-kth3c82B)

According to its self-reported version, Cisco SD-WAN vManage Software is affected by a vulnerability due to incorrect privilege assignment. An authenticated, local attacker can exploit this to elevate their privileges from Administrator to root by creating a malicious file. Note that Nessus has n...

6.7CVSS5.1AI score0.00164EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/05/28 12:0 a.m.28 views

Cisco SD-WAN vManage SQLi (cisco-sa-sdw-sqlinj-HDJUeEAX)

According to its self-reported version, Cisco SD-WAN vManage Software is affected by a vulnerability in the web-based management interface due to improper validation of SQL queries. An authenticated, remote attacker can exploit this to execute SQL. Note that Nessus has not tested for this issue b...

4.9CVSS5.9AI score0.01041EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/05/25 12:0 a.m.24 views

Cisco SD-WAN vDaemon Buffer Overflow (cisco-sa-sdwan-vdaemon-bo-RuzzEA2)

According to its self-reported version, Cisco SD-WAN vManage Software is affected by a buffer overflow vulnerability due to incomplete bounds checks for vDaemon service data. An authenticated, local attacker can exploit this, by sending malicious data, in order to cause a denial of service DoS...

5.4CVSS6AI score0.00601EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/05/06 12:0 a.m.46 views

Cisco Adaptive Security Appliance Software Web Services Buffer Overflow DoS (cisco-sa-memc-dos-fncTyYKG)

According to its self-reported version, Cisco ASA Software is affected by a vulnerability due to insufficient boundary checks. An authenticated, remote attacker can exploit this, by sending a crafted HTTP request to the web services interface, in order to cause a denial of service DoS condition...

8.5CVSS7AI score0.01197EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/04/23 12:0 a.m.25 views

Cisco SD-WAN vManage Command Injection (cisco-sa-vman-cmdinj-nRHKgfHX)

According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information. TRUSTED...

6.5CVSS5.4AI score0.01192EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/04/23 12:0 a.m.22 views

Cisco SD-WAN vManage Authorization Bypass (cisco-sa-vman-auth-bypass-Z3Zze5XC)

According to its self-reported version, Cisco SD-WAN vManage Software is affected by an unspecified vulnerability in the web-based management interface. An unauthenticated, remote attacker can exploit this by sending carefully crafted HTTP requests to the affected system. A successful exploit cou...

6.4CVSS5.7AI score0.00608EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/04/23 12:0 a.m.207 views

Cisco Unity Connection RCE (cisco-sa-cucm-rce-pqVYwyb)

The version of Cisco Unity Connection installed on the remote host is affected by a remote code execution vulnerability due to improper sanitization of user-supplied input. An authenticated, remote attacker can exploit this, by sending a SOAP API request with crafted parameters, in order to execu...

9CVSS9AI score0.02714EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/03/25 12:0 a.m.19 views

Cisco IOS XE Software Hardware Initialization Routines Arbitrary Code Execution (cisco-sa-ios-xe-iot-codexec-k46EFF6q)

According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information. TRUSTED...

7.2CVSS6.6AI score0.00308EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/03/24 12:0 a.m.30 views

Cisco IOS XE Software SD WAN Command Injection (cisco-sa-xesdwcinj-t68PPW7m)

According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information. TRUSTED...

7.2CVSS6.6AI score0.00712EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/03/15 12:0 a.m.33 views

Cisco SD-WAN vEdge Routers DoS (cisco-sa-fpdos-hORBfd9f)

According to its self-reported version, Cisco SD-WAN vEdge routers are affected by a denial of service DoS vulnerability in the deep packet inspection DPI engine due to improper processing of FTP traffic. An unauthentiated, remote attacker can exploit this to cause a DoS condition. Please see the...

8.6CVSS7.7AI score0.01415EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/03/12 12:0 a.m.26 views

Cisco SD-WAN Solution Command Injection (cisco-sa-sdwclici-cvrQpH9v)

According to its self-reported version, Cisco SD-WAN Solution is affected by a command injection vulnerability due to insufficient input validation. An authenticated, local attacker can exploit this, by authenticating to the device and submitting crafted input to the CLI utility, in order to inje...

7.8CVSS7.6AI score0.00557EPSS
Exploits0References3
Rows per page
Query Builder