255 matches found
CVE-2022-20936
Cisco Firepower Management Center (FMC) web UI is affected by multiple CVE-2022-20936 XSS vulnerabilities due to insufficient input validation in the web-based management interface. An authenticated, remote attacker could inject crafted input to trigger stored XSS in FMC and potentially access se...
CVE-2022-20935
CVE-2022-20935 affects Cisco Firepower Management Center (FMC) web-based management interface. The issue is a stored cross-site scripting (XSS) vulnerability caused by insufficient validation of user-supplied input in various FMC data fields. An authenticated, remote attacker could inject crafted...
CVE-2022-20932
CVE-2022-20932 involves multiple stored XSS vulnerabilities in the Cisco Firepower Management Center (FMC) web-based management interface. The issues arise from insufficient validation of user-supplied input in data fields, allowing an authenticated, remote attacker to inject script code that run...
CVE-2022-20905
CVE-2022-20905 concerns Cisco Firepower Management Center (FMC) web-based management interface. The issue is a set of stored cross-site scripting (XSS) vulnerabilities caused by insufficient validation of user-supplied input in the FMC web UI. An authenticated, remote attacker could inject crafte...
CVE-2022-20872
Cisco Firepower Management Center (FMC) faces multiple stored XSS vulnerabilities in its web-based management interface due to insufficient validation of user input. An authenticated, remote attacker could supply crafted input in various FMC UI fields to execute script code within the interface o...
CVE-2022-20872
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...
CVE-2022-20872
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...
CVE-2022-20843
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...
CVE-2022-20843
CVE-2022-20843 pertains to multiple stored XSS flaws in the Cisco Firepower Management Center (FMC) web-based management interface. The issues arise from insufficient validation of user-supplied input in the FMC UI, allowing an authenticated, remote attacker to inject crafted input that executes ...
CVE-2022-20840
Cisco Firepower Management Center (FMC) is affected by CVE-2022-20840, a set of stored cross-site scripting (XSS) vulnerabilities in the FMC web-based management interface. The flaws arise from insufficient validation of user-supplied input in the interface, allowing an authenticated, remote atta...
CVE-2022-20839
Cisco Firepower Management Center (FMC) web UI contains multiple stored XSS vulnerabilities due to insufficient input validation. An authenticated, remote attacker could inject crafted input via FMC interface fields to execute script code in the user’s browser or access browser-based data; availa...
CVE-2022-20838
Cisco Firepower Management Center (FMC) web UI contains stored XSS vulnerabilities due to insufficient input validation. An authenticated, remote attacker could inject crafted input into UI fields to execute arbitrary script in the FMC interface context or access browser-based information, with p...
CVE-2022-20836
CVE-2022-20836 corresponds to multiple stored XSS vulnerabilities in Cisco Firepower Management Center (FMC) web interface. Affected component: FMC’s web-based management UI; root cause: insufficient validation of user-supplied input, enabling an authenticated, remote attacker to inject arbitrary...
CVE-2022-20836
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...
CVE-2022-20835
CVE-2022-20835 affects Cisco Firepower Management Center (FMC) web-based management interface. The issue stems from insufficient validation of user-supplied input, allowing an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack by inserting crafted input into inte...
CVE-2022-20834
CVE-2022-20834 affects Cisco Firepower Management Center (FMC) web-based management interface. The issue is due to insufficient validation of user-supplied input in the FMC UI, enabling an authenticated, remote attacker to perform a stored XSS attack. Impact ranges from arbitrary script execution...
CVE-2022-20834
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...
CVE-2022-20833
CVE-2022-20833 concerns multiple stored XSS flaws in the web-based management interface of Cisco Firepower Management Center (FMC). The root cause is inadequate validation of user-supplied input in the FMC web UI, enabling an authenticated, remote attacker to inject script code via various data f...
CVE-2022-20832
CVE-2022-20832 describes multiple stored XSS vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software. The flaws stem from insufficient validation of user-supplied input in the FMC web UI, enabling an authenticated remote attacker to inject crafted...
CVE-2022-20831
CVE-2022-20831 involves multiple stored XSS flaws in Cisco Firepower Management Center (FMC) web UI caused by insufficient validation of user input. An authenticated, remote attacker could craft input in FMC interface fields to execute script code in the user’s browser or access browser-based inf...