Lucene search
K

101 matches found

Cvelist
Cvelist
added 2021/10/06 7:46 p.m.16 views

CVE-2021-34748 Cisco Intersight Virtual Appliance Command Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to perform a command injection attack on an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this...

8.8CVSS9.3AI score0.0275EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/10/06 7:46 p.m.12 views

CVE-2021-34748 Cisco Intersight Virtual Appliance Command Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to perform a command injection attack on an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this...

8.8CVSS8.2AI score0.0275EPSS
Exploits0References1
CVE
CVE
added 2021/10/06 7:46 p.m.77 views

CVE-2021-34748

Cisco Intersight Virtual Appliance is affected by a command-injection vulnerability in its web-based management interface caused by insufficient input validation. An authenticated, remote attacker could send crafted input to the interface and execute arbitrary commands with root-level privileges....

9CVSS9.2AI score0.0275EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2021/10/06 4:0 p.m.46 views

Cisco Intersight Virtual Appliance Command Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to perform a command injection attack on an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this...

8.8CVSS9.2AI score0.0275EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/10/06 12:0 a.m.7 views

PT-2021-4699 · Cisco · Cisco Intersight Virtual Appliance

Name of the Vulnerable Software and Affected Versions: Cisco Intersight Virtual Appliance affected versions not specified Description: The issue is related to insufficient input validation in the web-based management interface of Cisco Intersight Virtual Appliance, which could allow an...

9CVSS8.9AI score0.0275EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2021/09/10 12:0 a.m.11 views

The vulnerability of the Cisco Intersight Virtual Appliance, a software tool for managing cloud systems, related to access control deficiencies, allows an attacker to gain access to confidential internal services through an external interface.

The vulnerability of the Cisco Intersight Virtual Appliance, a software tool for managing cloud systems, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to confidential internal services through an external...

8.3CVSS7.5AI score0.00402EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/13 12:0 a.m.6 views

The vulnerability in the web interface of the Cisco Intersight Virtual Appliance software for managing cloud systems allows a perpetrator to execute arbitrary commands with root privileges.

The vulnerability of the web interface for managing Cisco Intersight Virtual Appliance software exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary commands with root privileges remotely...

9.4CVSS7.4AI score0.02704EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/02 12:0 a.m.6 views

The vulnerability in the web interface of the Cisco Intersight Virtual Appliance software for managing cloud systems allows a perpetrator to execute arbitrary commands with root privileges.

The vulnerability of the web interface for managing Cisco Intersight Virtual Appliance software exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary commands with root privileges remotely...

9.4CVSS6.9AI score0.01525EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2021/07/22 4:15 p.m.21 views

CVE-2021-1601

Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external...

8.3CVSS0.00402EPSS
Exploits0References1
OSV
OSV
added 2021/07/22 4:15 p.m.7 views

CVE-2021-1617

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

6.5CVSS6.8AI score0.01525EPSS
Exploits0References1
NVD
NVD
added 2021/07/22 4:15 p.m.21 views

CVE-2021-1600

Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external...

8.3CVSS0.00402EPSS
Exploits0References1
NVD
NVD
added 2021/07/22 4:15 p.m.16 views

CVE-2021-1618

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

9CVSS0.02704EPSS
Exploits0References1
OSV
OSV
added 2021/07/22 4:15 p.m.7 views

CVE-2021-1618

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

7.2CVSS6AI score0.02704EPSS
Exploits0References1
OSV
OSV
added 2021/07/22 4:15 p.m.6 views

CVE-2021-1601

Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external...

8.3CVSS7.3AI score0.00402EPSS
Exploits0References1
NVD
NVD
added 2021/07/22 4:15 p.m.25 views

CVE-2021-1617

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

6.5CVSS0.01525EPSS
Exploits0References1
OSV
OSV
added 2021/07/22 4:15 p.m.3 views

CVE-2021-1600

Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external...

8.3CVSS5.8AI score0.00402EPSS
Exploits0References1
Prion
Prion
added 2021/07/22 4:15 p.m.16 views

Path traversal

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

5.5CVSS7.1AI score0.01525EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/07/22 4:15 p.m.16 views

Input validation

Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external...

5.8CVSS8.2AI score0.00402EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/07/22 4:15 p.m.19 views

Path traversal

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient input validation. An...

9CVSS7.5AI score0.02704EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/07/22 4:15 p.m.16 views

Input validation

Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external...

5.8CVSS8.2AI score0.00402EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder