27 matches found
EUVD-2020-24719
Malware in sbrugna...
EUVD-2025-32023
Malicious code in bioql PyPI...
EUVD-2025-32022
Malicious code in bioql PyPI...
CVE-2025-20356
A vulnerability in the web-based management interface of Cisco Cyber Vision Center could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-base...
CVE-2025-20357
A vulnerability in the web-based management interface of Cisco Cyber Vision Center could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-base...
CVE-2025-20357
A vulnerability in the web-based management interface of Cisco Cyber Vision Center could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-base...
CVE-2025-20356
A vulnerability in the web-based management interface of Cisco Cyber Vision Center could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-base...
CVE-2025-20357 Cisco CyberVision Center Reports Stored Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Cyber Vision Center could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-base...
CVE-2025-20357 Cisco CyberVision Center Reports Stored Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Cyber Vision Center could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-base...
CVE-2025-20356
Cisco Cyber Vision Center's web-based management interface contains a stored XSS vulnerability. An authenticated attacker with valid admin credentials (Sensor Explorer page access) can inject malicious script into specific interface pages, leading to execution of script in the user’s browser and ...
CVE-2025-20356 Cisco CyberVision Center Sensor Explorer Stored Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Cyber Vision Center could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-base...
Cisco Cyber Vision Center Stored Cross-Site Scripting Vulnerabilities
Multiple vulnerabilities in the web-based management interface of Cisco Cyber Vision Center could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. These vulnerabilities exist because the web-based management interface of an...
Cisco Cyber Vision Center 跨站脚本漏洞
Cisco Cyber Vision Center is a suite of detection and analysis platforms from Cisco. A cross-site scripting vulnerability exists in Cisco Cyber Vision Center that stems from insufficient validation of inputs to the web-based management interface, which could lead to a cross-site scripting attack...
PT-2025-40266
Name of the Vulnerable Software and Affected Versions Cisco Cyber Vision Center affected versions not specified Description A flaw exists in the web-based management interface of Cisco Cyber Vision Center that could permit an authenticated, remote attacker to perform cross-site scripting XSS...
The vulnerability of the Server Message Block Version 2 (SMB2) protocol implementation in the Snort intrusion detection system of Cisco Firepower Threat Defense (FTD), the Cisco Meraki MX network device management software, the Cisco Cyber Vision industrial network security control solution, and the Cisco Umbrella cloud security service allows a perpetrator to bypass security restrictions and cause service interruptions.
The vulnerability of the Server Message Block Version 2 SMB2 implementation in the Snort intrusion detection system of the Cisco Firepower Threat Defense FTD microprogramming network interface devices, the Cisco Meraki MX network devices, the Cisco Cyber Vision industrial network security control...
多款Cisco产品安全漏洞
Cisco Firepower Threat Defense FTD and Cisco Cyber Vision Center Software are both products of Cisco, Inc.Cisco Firepower Threat Defense is a suite of unified software that provides next-generation firewall services. Cisco Cyber Vision Center Software is an industrial control system ICS monitorin...
PT-2022-5809 · Cisco · Cisco Meraki Mx +3
Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense FTD with Snort 3 configured Cisco Meraki MX with Snort 3 configured Cisco Cyber Vision with Snort 3 configured Cisco Umbrella with Snort 3 configured Description: Multiple vulnerabilities in the Server Message...
PT-2022-6189 · Cisco · Cisco Meraki Mx +3
Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense FTD versions with Snort 3 configured Cisco Meraki MX versions with Snort 3 configured Cisco Cyber Vision versions with Snort 3 configured Cisco Umbrella versions with Snort 3 configured Description: Multiple...
The vulnerability of the Cisco Cyber Vision Center network security control software, related to access control deficiencies, allows attackers to enhance their privileges.
The vulnerability of the Cisco Cyber Vision Center network security control software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to enhance their privileges remotely...
CVE-2020-3448
A vulnerability in an access control mechanism of Cisco Cyber Vision Center Software could allow an unauthenticated, remote attacker to bypass authentication and access internal services that are running on an affected device. The vulnerability is due to insufficient enforcement of access control...