CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

CNVD•added 2018/02/26 12:0 a.m.•2 views

Cisco Data Center Analytics Framework Cross-Site Scripting Vulnerability

Cisco Data Center Analytics Framework DCAF is a set of data center analytics framework from Cisco. The Cisco Data Center Analytics Framework suffers from a cross-site scripting vulnerability that arises from the program's failure to adequately validate user-submitted input. A remote attacker coul...

6.1CVSS6.6AI score0.00235EPSS

Exploits0References1

CNVD•added 2018/02/26 12:0 a.m.•2 views

Cisco Data Center Analytics Framework Cross-Site Request Forgery Vulnerability (CNVD-2018-05307)

Cisco Data Center Analytics Framework DCAF application is a set of data center analytics frameworks from the U.S. company Cisco Cisco. A cross-site request forgery vulnerability exists in the Cisco DCAF application, which can be exploited by a remote attacker to submit arbitrary requests and...

5.8CVSS7AI score0.00145EPSS

Exploits0References1

Vulnrichment•added 2018/02/22 12:0 a.m.•9 views

CVE-2018-0145

A vulnerability in the web-based management interface of the Cisco Data Center Analytics Framework application could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the interface of an affected system. The vulnerability is due to...

5.9AI score0.00319EPSS

Exploits0References2

Prion•added 2018/02/08 7:29 a.m.•12 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Data Center Analytics Framework could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability is du...

4.3CVSS6AI score0.00235EPSS

Exploits0References2Affected Software1

Prion•added 2018/02/08 7:29 a.m.•10 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Data Center Analytics Framework could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability is due t...

4.3CVSS5.9AI score0.00235EPSS

Exploits0References2

Vulnrichment•added 2018/02/08 7:0 a.m.•9 views

CVE-2018-0129

6AI score0.00235EPSS

Exploits0References2

Cisco•added 2018/02/07 4:0 p.m.•22 views

Cisco Data Center Analytics Framework Stored Cross-Site Scripting Vulnerability

6.1CVSS1.6AI score0.00235EPSS

Exploits0References1

Prion•added 2015/06/23 2:59 p.m.•8 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in Cisco Data Center Analytics Framework DCAF 1.4 allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCun26807...

6.8CVSS7.7AI score0.00116EPSS

Exploits0References2Affected Software1

CVE•added 2015/06/23 2:0 p.m.•36 views

CVE-2015-4189

Cisco Data Center Analytics Framework (DCAF) 1.4 contains a Cross-Site Request Forgery (CSRF) vulnerability that could allow remote attackers to hijack the authentication of arbitrary users (Bug ID CSCun26807). Affected product: DCAF 1.4. Root cause: CSRF protection insufficiency enabling unautho...

6.8CVSS7.4AI score0.00116EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by