Lucene search
K

28 matches found

VulnCheck KEV
VulnCheck KEV
added 2026/06/15 12:0 a.m.38 views

VulnCheck KEV: CVE-2026-20262

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker to create a file or overwrite any file on the filesystem of an affected system. This vulnerability exists because the affected software does not properly validate...

6.5CVSS5.5AI score0.07683EPSS
In wildExploits2References4
Positive Technologies
Positive Technologies
added 2026/06/05 12:0 a.m.14 views

PT-2026-47188

CVE-2026-38500 - Cisco IOS XE Software Privilege Escalation Vulnerability CVE ID :CVE-2026-38500 Published : June 5, 2026, 2:16 p.m. | 1 hour, 6 minutes ago Description :Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further...

5.4AI score
Exploits0References1
Cvelist
Cvelist
added 2026/03/25 4:6 p.m.20 views

CVE-2026-20110

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to cause a denial of service DoS condition on an affected device. This vulnerability exists because incorrect privileges are associated with the start maintenance command. An attacker could exploit th...

6.5CVSS0.00092EPSS
Exploits0References1
CVE
CVE
added 2026/03/04 5:47 p.m.14 views

CVE-2026-20057

CVE-2026-20057 affects multiple Cisco products via the Snort 3 VBA feature. The issue stems from lack of proper error checking when decompressing VBA data, enabling an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash and restart, resulting in a DoS (availability imp...

5.8CVSS6AI score0.00432EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-4321

Malware in sbrugna...

6.5CVSS6.4AI score0.02456EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/09/24 12:0 a.m.4 views

Cisco IOS XE 安全漏洞

Cisco IOS XE is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE that stems from improper handling of...

8.6CVSS6.4AI score0.00414EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.3 views

PT-2025-2913 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE affected versions not specified Description: The issue concerns a system configuration buffer overwrite when the administrative distance is set. No further details are available due to the rejection or withdrawal of the CVE ID by...

7.2AI score
Exploits0References2
CNNVD
CNNVD
added 2025/01/08 12:0 a.m.4 views

Cisco Common Services Platform Collector 安全漏洞

Cisco Common Services Platform Collector is a common services platform data collector from Cisco USA. Cisco Common Services Platform Collector suffers from a stored cross-site scripting vulnerability that can be exploited by remote attackers to inject malicious script or HTML code, which can be...

5.4CVSS5.7AI score0.00276EPSS
Exploits0References3
OSV
OSV
added 2024/11/15 5:15 p.m.4 views

CVE-2021-1466

A vulnerability in the vDaemon service of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to cause a buffer overflow on an affected system, resulting in a denial of service DoS condition. The vulnerability is due to incomplete bounds checks for data that is provided to...

5.4CVSS6.1AI score0.00601EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/08 12:0 a.m.5 views

PT-2023-9646 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue is related to improper handling of frames with VLAN tag information, which could allow an unauthenticated, adjacent attacker to cause a denial of service DoS conditi...

4.3CVSS7.2AI score0.00257EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/04/13 12:0 a.m.4 views

Cisco IOS XE Software 后置链接漏洞

Cisco IOS XE Software is an operating system from Cisco, Inc. A single operating system for enterprise wired and wireless access, aggregation, core and WAN, Cisco IOS XE reduces business and network complexity. Cisco IOS XE suffers from a backlink vulnerability that stems from not performing actu...

9CVSS7.6AI score0.01414EPSS
Exploits0References5
OSV
OSV
added 2021/11/19 12:15 a.m.4 views

CVE-2021-40129

A vulnerability in the configuration dashboard of Cisco Common Services Platform Collector CSPC could allow an authenticated, remote attacker to submit a SQL query through the CSPC configuration dashboard. This vulnerability is due to insufficient input validation of uploaded files. An attacker...

4.9CVSS5.8AI score0.01033EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/05/05 12:0 a.m.8 views

Cisco SD-WAN vManage 跨站脚本漏洞

Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. A cross-site scripting vulnerability exists in the API of Cisco SD-WAN vManage versions prior to 20.5.1, which stems from the API failing to...

6.4CVSS5.7AI score0.00635EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/03/02 12:0 a.m.9 views

The vulnerability of the NX-API network operating system function of Cisco NX-OS routers allows a attacker to perform CSRF attacks.

The vulnerability of the NX-API network operating system function of Cisco NX-OS routers is related to insufficient protection when entering CSRF requests. Exploiting this vulnerability can allow a remote attacker to execute a CSRF attack...

9.4CVSS7.6AI score0.00668EPSS
Exploits0References3
OSV
OSV
added 2020/09/24 6:15 p.m.4 views

CVE-2020-3400

A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to utilize parts of the web UI for which they are not authorized.The vulnerability is due to insufficient authorization of web UI access requests. An attacker could exploit this...

8.8CVSS7.3AI score0.00981EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/02/19 7:55 p.m.4 views

CVE-2019-1950 Cisco IOS XE SD-WAN Software Default Credentials Vulnerability

A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, local attacker to gain unauthorized access to an affected device. The vulnerability is due to the existence of default credentials within the default configuration of an affected device. An attacker who has access to ...

8.4CVSS5.5AI score0.00333EPSS
Exploits0References1
OSV
OSV
added 2019/10/16 7:15 p.m.1 views

CVE-2019-12704

A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to view the contents of arbitrary files on an affected device. The vulnerability is due to improper input validation in the web-based managemen...

6.5CVSS6.9AI score0.01565EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/09/25 12:0 a.m.2 views

PT-2019-3319 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue is related to multiple vulnerabilities in the web-based user interface Web UI of Cisco IOS XE Software. These vulnerabilities could allow an authenticated, remote...

9CVSS7.9AI score0.28948EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2019/09/10 12:0 a.m.5 views

The vulnerability of Cisco Enterprise NFV Infrastructure Software (NFVIS) arises from insufficient validation of input data, allowing attackers to disclose sensitive information that should be protected.

The vulnerability of Cisco Enterprise NFV Infrastructure Software NFVIS exists due to insufficient testing of input data. Exploiting this vulnerability could allow a attacker to disclose protected information...

4.9CVSS5.5AI score0.00351EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/04/23 12:0 a.m.8 views

The vulnerability in the web interface of the Cisco IOS XE operating system allows a hacker to gain access to protected information.

The vulnerability of the Cisco IOS XE operating system’s web interface is related to configuration errors. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to protected information using a specially crafted request...

7.8CVSS6.6AI score0.02223EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder