CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

225 matches found

OSV•added 2021/05/06 1:15 p.m.•1 views

CVE-2021-1497

Multiple vulnerabilities in the web-based management interface of Cisco HyperFlex HX could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory...

9.8CVSS7.6AI score0.94363EPSS

Exploits5References3

Prion•added 2021/05/06 1:15 p.m.•24 views

Command injection

7.5CVSS9.8AI score0.94206EPSS

Exploits5References2Affected Software1

Prion•added 2021/05/06 1:15 p.m.•26 views

Command injection

10CVSS9.8AI score0.94363EPSS

Exploits5References2Affected Software1

Prion•added 2021/05/06 1:15 p.m.•14 views

Authentication flaw

A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could allow an unauthenticated, remote attacker to upload files to an affected device. This vulnerability is due to missing authentication for the upload function. An attacker could exploit this vulnerabilit...

5CVSS5.4AI score0.92857EPSS

Exploits5References2Affected Software1

Vulnrichment•added 2021/05/06 12:41 p.m.•12 views

CVE-2021-1499 Cisco HyperFlex HX Data Platform File Upload Vulnerability

5.3CVSS7.1AI score0.92857EPSS

Exploits5References2

CVE•added 2021/05/06 12:41 p.m.•106 views

CVE-2021-1499

Cisco HyperFlex HX Data Platform is affected by an unauthenticated arbitrary file upload vulnerability in the web-based management interface. The issue arises from missing authentication on the /upload endpoint, allowing an attacker to upload files with the permissions of the Tomcat user (tomcat8...

5.3CVSS5.3AI score0.92857EPSS

Exploits5References2Affected Software1

Cvelist•added 2021/05/06 12:41 p.m.•16 views

CVE-2021-1499 Cisco HyperFlex HX Data Platform File Upload Vulnerability

5.3CVSS5.8AI score0.92857EPSS

Exploits5References2

CVE•added 2021/05/06 12:41 p.m.•1086 views

CVE-2021-1498

Cisco HyperFlex HX Data Platform contains unauthenticated command injection vulnerabilities in its web-based management interface that could allow a remote attacker to execute arbitrary commands on the affected device. Evidence from multiple sources identifies CVE-2021-1498 as a remote command ex...

9.8CVSS9.9AI score0.94206EPSS

In wildExploits5References3Affected Software1

Vulnrichment•added 2021/05/06 12:41 p.m.•18 views

CVE-2021-1498 Cisco HyperFlex HX Command Injection Vulnerabilities

9.8CVSS7.4AI score0.94206EPSS

Exploits5References2

Cvelist•added 2021/05/06 12:41 p.m.•21 views

CVE-2021-1498 Cisco HyperFlex HX Command Injection Vulnerabilities

9.8CVSS10AI score0.94206EPSS

Exploits5References2

Vulnrichment•added 2021/05/06 12:41 p.m.•13 views

CVE-2021-1497 Cisco HyperFlex HX Command Injection Vulnerabilities

9.8CVSS7.5AI score0.94363EPSS

Exploits5References2

Cvelist•added 2021/05/06 12:41 p.m.•27 views

CVE-2021-1497 Cisco HyperFlex HX Command Injection Vulnerabilities

9.8CVSS10AI score0.94363EPSS

Exploits5References2

CVE•added 2021/05/06 12:41 p.m.•1115 views

CVE-2021-1497

Cisco HyperFlex HX Data Platform (Cisco HyperFlex HX) contains CVE-2021-1497: multiple vulnerabilities in the web-based management interface that allow an unauthenticated remote attacker to perform command injection against the device. Affected product/version per public advisories: Cisco HyperFl...

10CVSS9.9AI score0.94363EPSS

In wildExploits5References3Affected Software1

The Hacker News•added 2021/05/06 12:30 p.m.•110 views

Critical Flaws Hit Cisco SD-WAN vManage and HyperFlex Software

Networking equipment major Cisco has rolled out software updates to address multiple critical vulnerabilities impacting HyperFlex HX and SD-WAN vManage Software that could allow an attacker to perform command injection attacks, execute arbitrary code, and gain access to sensitive information. In ...

10CVSS2.3AI score0.94363EPSS

Exploits6

CNNVD•added 2021/05/06 12:0 a.m.•4 views

Cisco HyperFlex HX Data Platform 操作系统命令注入漏洞

Cisco HyperFlex HX Data Platform is a network appliance from Cisco USA. It provides enterprise-class agility, scalability, security, and lifecycle management capabilities. The Cisco HyperFlex HX Data Platform suffers from an operating system command injection vulnerability that could allow an...

10CVSS8.7AI score0.94363EPSS

Exploits5References5

CISA•added 2021/05/06 12:0 a.m.•10 views

 Cisco Releases Security Updates for Multiple Products 

Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA...

8.2AI score

Exploits0References10

CNNVD•added 2021/05/06 12:0 a.m.•5 views

Cisco HyperFlex HX Data Platform 操作系统命令注入漏洞

9.8CVSS8.7AI score0.94206EPSS

Exploits5References5

Cisco•added 2021/05/05 4:0 p.m.•68 views

Cisco HyperFlex HX Data Platform File Upload Vulnerability

5.3CVSS5.3AI score0.92857EPSS

Exploits5References1

Cisco•added 2021/05/05 4:0 p.m.•288 views

Cisco HyperFlex HX Command Injection Vulnerabilities

9.8CVSS9.9AI score0.94363EPSS

Exploits6References1

Positive Technologies•added 2021/05/05 12:0 a.m.•5 views

PT-2021-2968 · Cisco · Cisco Hyperflex Hx

Name of the Vulnerable Software and Affected Versions: Cisco HyperFlex HX affected versions not specified Description: The issue is related to multiple vulnerabilities in the web-based management interface of Cisco HyperFlex HX, which could allow an unauthenticated, remote attacker to perform...

10CVSS10AI score0.94363EPSS

Exploits5References16

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by