9 matches found
Cisco FXOS Software和Cisco UCS Manager Software 跨站脚本漏洞
Cisco FXOS Software and Cisco UCS Manager Software are both products of the American company Cisco. Cisco FXOS Software is a firewall software that runs on Cisco security devices. Cisco UCS Manager Software is a device management software. Both Cisco FXOS Software and Cisco UCS Manager Software...
Vulnerabilities fixed in Cisco FXOS and NX-OS
Cisco has fixed vulnerabilities in FXOS and NX-OS. The vulnerabilities allow an unauthenticated remote malicious person to remote user to cause a denial-of-service and to execute arbitrary code under root privileges. Cisco categorizes this vulnerability according to the CVSSv3 method with a score...
CVE-2020-3545
A vulnerability in Cisco FXOS Software could allow an authenticated, local attacker with administrative credentials to cause a buffer overflow condition. The vulnerability is due to incorrect bounds checking of values that are parsed from a specific file. An attacker could exploit this...
Cisco FXOS and NX-OS Denial of Service Vulnerabilities
Cisco FXOS is the Firepower extensible operating system.Cisco NX-OS is the network operating system for the Cisco Nexus family of Ethernet switches and the MDS family of Fibre Channel storage area network switches. A denial of service vulnerability exists in the implementation of Link Layer...
The vulnerability of the Cisco Firepower Extensible Operating System and the Cisco Unified Computing System Central device management system allows a intruder to inject arbitrary commands.
The vulnerability of the CLI component of the Cisco Firepower Extensible Operating System and the Cisco Unified Computing System Central device management system is related to the lack of measures for cleaning input data. Exploiting this vulnerability could allow a malicious actor to inject...
Input validation
An unspecified script in the web interface in Cisco Firepower Extensible Operating System 1.11.160 on Firepower 9000 devices allows remote authenticated users to execute arbitrary OS commands via crafted parameters, aka Bug ID CSCux10622...
CVE-2015-6374
The web interface in Cisco Firepower Extensible Operating System 1.11.160 on Firepower 9000 devices does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks via a crafted web site, aka Bug ID...
CVE-2015-6369
The USB driver in Cisco Firepower Extensible Operating System 1.11.160 on Firepower 9000 devices allows physically proximate attackers to cause a denial of service via a crafted USB device that triggers invalid USB commands, aka Bug ID CSCux10531...
Design/Logic Flaw
Cisco Firepower Extensible Operating System 1.11.160 on Firepower 9000 devices allows remote attackers to read files via a crafted HTTP request, aka Bug ID CSCux10608...