Lucene search
K

4 matches found

ThreatPost
ThreatPost
added 2021/07/09 5:31 p.m.82 views

Cisco BPA, WSA Bugs Allow Remote Cyberattacks

A set of high-severity privilege-escalation vulnerabilities affecting Business Process Automation BPA application and Cisco’s Web Security Appliance WSA and could allow authenticated, remote attackers to access sensitive data or take over a targeted system. The first two bugs CVE-2021-1574 and...

9CVSS8.1AI score0.01879EPSS
Exploits0References5
Cvelist
Cvelist
added 2021/07/08 6:35 p.m.26 views

CVE-2021-1576 Cisco Business Process Automation Privilege Escalation Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Business Process Automation BPA could allow an authenticated, remote attacker to elevate privileges to Administrator. These vulnerabilities are due to improper authorization enforcement for specific features and for access to...

8.8CVSS8.7AI score0.01091EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/07/08 6:35 p.m.24 views

CVE-2021-1576 Cisco Business Process Automation Privilege Escalation Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Business Process Automation BPA could allow an authenticated, remote attacker to elevate privileges to Administrator. These vulnerabilities are due to improper authorization enforcement for specific features and for access to...

8.8CVSS6.9AI score0.01091EPSS
Exploits0References1
CVE
CVE
added 2021/07/08 6:35 p.m.72 views

CVE-2021-1576

Cisco BPA web-based management interface (pre-3.1) contains privilege-escalation vulnerabilities due to improper authorization for specific features and log-file access. An attacker with valid credentials and an active session could elevate to Administrator by sending crafted HTTP requests or exf...

8.8CVSS8.7AI score0.01091EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder