Lucene search
K

4 matches found

Circl
Circl
added 2020/11/18 8:40 p.m.6 views

CVE-2020-3367

creationtimestamp| type| source ---|---|--- 2020-11-18 20:40:52+00:00| seen| https://t.me/cibsecurity/16537...

7.8CVSS5.9AI score0.00788EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/11/18 5:40 p.m.22 views

CVE-2020-3367 Cisco Secure Web Appliance Privilege Escalation Vulnerability

A vulnerability in the log subscription subsystem of Cisco AsyncOS for the Cisco Secure Web Appliance formerly Web Security Appliance could allow an authenticated, local attacker to perform command injection and elevate privileges to root. This vulnerability is due to insufficient validation of...

5.3CVSS7.9AI score0.00788EPSS
Exploits0References1
CVE
CVE
added 2020/11/18 5:40 p.m.71 views

CVE-2020-3367

The CVE-2020-3367 issue affects Cisco AsyncOS for the Cisco Secure Web Appliance (WSA). It targets the log subscription subsystem where insufficient validation of user-supplied input enables an authenticated, local attacker to inject commands via the web interface or CLI and elevate to root. Impa...

7.8CVSS6.9AI score0.00788EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/11/18 5:40 p.m.8 views

CVE-2020-3367 Cisco Secure Web Appliance Privilege Escalation Vulnerability

A vulnerability in the log subscription subsystem of Cisco AsyncOS for the Cisco Secure Web Appliance formerly Web Security Appliance could allow an authenticated, local attacker to perform command injection and elevate privileges to root. This vulnerability is due to insufficient validation of...

5.3CVSS7.5AI score0.00788EPSS
Exploits0References1
Rows per page
Query Builder