Lucene search
K

75 matches found

Vulnrichment
Vulnrichment
added 2019/04/18 1:30 a.m.11 views

CVE-2019-1841 Cisco DNA Center Unintended Proxy Via SWIM Import Interface Vulnerability

A vulnerability in the Software Image Management feature of Cisco DNA Center could allow an authenticated, remote attacker to access to internal services without additional authentication. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this...

6.5CVSS7AI score0.02644EPSS
Exploits0References2
CVE
CVE
added 2019/04/18 1:30 a.m.59 views

CVE-2019-1841

Cisco DNA Center’s Software Image Management (SWIM) import interface vulnerability (CVE-2019-1841) allows an authenticated, remote attacker to access internal services without extra authentication due to insufficient input validation. Affected: Cisco DNA Center versions prior to 1.2.5. Impact des...

8.1CVSS7AI score0.02644EPSS
Exploits0References2Affected Software1
Cisco
Cisco
added 2019/04/17 4:0 p.m.58 views

Cisco DNA Center Unintended Proxy Via SWIM Import Interface Vulnerability

A vulnerability in the Software Image Management feature of Cisco DNA Center could allow an authenticated, remote attacker to access to internal services without additional authentication. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this...

6.5CVSS1.8AI score0.02644EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/04/17 12:0 a.m.5 views

PT-2019-1991 · Cisco · Cisco Dna Center

Name of the Vulnerable Software and Affected Versions: Cisco DNA Center versions prior to 1.2.5 Description: A vulnerability in the Software Image Management feature could allow an authenticated, remote attacker to access internal services without additional authentication. This issue is due to...

8.5CVSS7AI score0.02644EPSS
Exploits0References5
Prion
Prion
added 2019/03/11 9:29 p.m.25 views

Input validation

A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability is due to improper verification of digital signature...

4.6CVSS6.3AI score0.00244EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/03/11 9:29 p.m.26 views

CVE-2019-1615

A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability is due to improper verification of digital signature...

6.7CVSS6.3AI score0.00244EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2018/12/19 12:0 a.m.5 views

PT-2018-2066 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Description: A vulnerability in the authorization subsystem of Cisco Adaptive Security Appliance ASA Software could allow an authenticated, but unprivileged levels...

8.5CVSS7.9AI score0.02362EPSS
Exploits1References9
Cvelist
Cvelist
added 2018/10/05 2:0 p.m.23 views

CVE-2018-15370 Cisco Catalyst 6800 Series Switches ROM Monitor Software Secure Boot Bypass Vulnerability

A vulnerability in Cisco IOS ROM Monitor ROMMON Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, local attacker to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is due to the presence of a...

6.7AI score0.00361EPSS
Exploits0References2
CVE
CVE
added 2018/10/05 2:0 p.m.78 views

CVE-2018-15374

CVE-2018-15374 describes a digital signature verification bypass in the Cisco IOS XE Software Image Verification feature. An authenticated, local attacker could upload a legitimate-looking but malicious software image or file to an affected device, exploiting improper verification to bypass signa...

7.2CVSS6.4AI score0.00236EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/11/30 9:0 a.m.22 views

CVE-2017-12333

A vulnerability in Cisco NX-OS System Software could allow an authenticated, local attacker to bypass signature verification when loading a software image. The vulnerability is due to insufficient NX-OS signature verification for software images. An authenticated, local attacker could exploit thi...

6.4AI score0.00227EPSS
Exploits0References3
CVE
CVE
added 2017/11/30 9:0 a.m.60 views

CVE-2017-12333

CVE-2017-12333 : Cisco NX-OS System Software contains a vulnerability that allows an authenticated, local attacker to bypass signature verification when loading a software image due to insufficient NX-OS signature verification. Affected products include Multilayer Director Switches, Nexus 7000 Se...

6.7CVSS6.3AI score0.00227EPSS
Exploits0References3Affected Software1
Cisco
Cisco
added 2017/11/29 4:0 p.m.53 views

Cisco NX-OS System Software Image Signature Bypass Vulnerability

A vulnerability in Cisco NX-OS System Software could allow an authenticated, local attacker to bypass signature verification when loading a software image. The vulnerability is due to insufficient NX-OS signature verification for software images. An authenticated, local attacker could exploit thi...

6.7CVSS6.4AI score0.00227EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/09/24 12:0 a.m.35 views

Cisco Unified IP Phones Multiple Vulnerabilities (cisco-sa-20110601-phone)

According to its self-reported version, the version of the Cisco Unified IP Phone software running on the remote device has the following vulnerabilities : - Cisco Unified IP Phones 7900 series are prone to privilege escalation vulnerabilities. An authenticated attacker could exploit this issue t...

6.6CVSS5.6AI score0.00271EPSS
Exploits0References4
Saint
Saint
added 2011/11/28 12:0 a.m.22 views

Viscom Software Image Viewer ActiveX TIFMergeMultiFiles Vulnerability

Added: 11/28/2011 BID: 50712 Background Viscom Image Viewer CP is an image viewer ActiveX control that supports many popular image file formats, zoom in, zoom out, panning, auto zoom and auto scrolling when drawing the selection rectangle. Problem The ImageViewer2.OCX ActiveX control in Image...

0.8AI score
Exploits0
Cisco
Cisco
added 2011/06/01 3:32 p.m.23 views

Cisco Unified IP Phones 7900 Series Unsigned Code Installation Vulnerability

Cisco Unified IP Phones 7900 Series devices contain a vulnerability that could allow an authenticated, local attacker to load a software image without verification. The vulnerability is due to insecure security checks on software images. An authenticated, local attacker could exploit this...

1.5CVSS6.6AI score0.00271EPSS
Exploits0References1
Rows per page
Query Builder