Cisco Customer Collaboration Platform Information Disclosure Vulnerability

Cisco Customer Collaboration Platform Cisco CCP is a customer collaboration platform from Cisco USA. Cisco Customer Collaboration Platform suffers from an information disclosure vulnerability that stems from the application's inadequate protection of sensitive information, which can be exploited ...

The vulnerability of the Cisco IOS XR operating system, related to unlimited resource allocation, allows for service failures to occur.

The vulnerability of the Cisco IOS XR operating system is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability in the web interface for collecting device information on the Cisco Common Services Platform Collector allows a attacker to perform XSS attacks.

The vulnerability in the web interface for collecting device information on Cisco Common Services Platform Collector CSPC is related to the failure to remove unacceptable symbols from identifiers on web pages. Exploiting this vulnerability allows a remote attacker to perform XSS attacks...

Cisco Common Services Platform Collector 安全漏洞

Cisco Common Services Platform Collector is a common services platform data collector from Cisco USA. Cisco Common Services Platform Collector suffers from a stored cross-site scripting vulnerability that can be exploited by remote attackers to inject malicious script or HTML code, which can be...

Cisco Identity Services Engine 安全漏洞

Cisco Identity Services Engine Cisco ISE is an environment-aware platform ISE Identity Services Engine from Cisco USA. The platform regulates the network by collecting real-time information from the network, users, and devices, and formulating and enforcing policies accordingly. The Cisco Identit...

The vulnerability of the ACL compression function in the Cisco IOS XR operating system allows a hacker to bypass security restrictions and gain access to privileged networks.

The vulnerability of the ACL compression function in the Cisco IOS XR operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to bypass security restrictions and gain access to privileged networks...

The vulnerability of the Cisco IOx software platform’s subsystems allows attackers to execute arbitrary commands or escalate their privileges.

The vulnerability of the Cisco IOx software platform’s operating system, Cisco IOS XE, is related to access control deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges or execute arbitrary commands...

The vulnerability in the web interface for managing device information on the Cisco Common Services Platform Collector allows a attacker to carry out cross-site scripting attacks.

The vulnerability in the web interface for collecting device information on the Cisco Common Services Platform Collector exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of the Cisco IOX software platform arises from an incorrect limitation on the path name to the restricted access catalog, allowing a perpetrator to execute arbitrary code.

The vulnerability of the Cisco IOx software platform exists due to an incorrect limitation on the path name to the restricted access catalog. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Cisco IOX software platform, related to deficiencies in access control, allows attackers to increase their privileges.

The vulnerability of the Cisco IOx software platform is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

CVE-2022-20674

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

CVE-2022-20727

Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install applications without being...

PT-2022-2712 · Cisco · Cisco Iox +1

Name of the Vulnerable Software and Affected Versions: Cisco IOx affected versions not specified Description: The issue exists due to insufficient input validation in the Cisco IOx platform, allowing an attacker to potentially cause a denial of service by sending specially crafted TCP traffic...

PT-2022-2851 · Cisco · Cisco Iox +2

Name of the Vulnerable Software and Affected Versions: Cisco IOx affected versions not specified Description: Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operati...

Cisco SD-WAN vManage Software 安全漏洞

Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. An authentication bypass vulnerability exists in the Web Messaging Service interface of Cisco SD-WAN vManage, which can be exploited by an...

CVE-2020-3396

A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive SSD for Cisco IOS XE Software could allow an authenticated, physical attacker to remove the USB 3.0 SSD and modify sensitive areas of the file system, including the namespace container protections. The vulnerability...

PT-2020-17253 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers affected versions not specified Description: A vulnerability in the IP Address Resolution Protocol ARP feature could allow an unauthenticated, adjacent attacker to...

The vulnerability of the IOx software platform of the Cisco IOS operating system allows a hacker to elevate their privileges, execute arbitrary code, or cause service interruptions.

The vulnerability of the IOx software platform of the Cisco IOS operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and execute arbitrary code or cause service failures...

The vulnerability of the IS-IS routing protocol implementation in Cisco IOS XR allows a attacker to cause a service failure.

The vulnerability of the IS-IS routing protocol implementation in Cisco IOS XR operating systems is related to errors in the processing of IS-IS protocol data packets. Exploiting this vulnerability can allow a malicious actor to cause service failures...

CVE-2019-1782

A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments passed to certain CLI...