Lucene search
K

9 matches found

BDU FSTEC
BDU FSTEC
added 2022/08/18 12:0 a.m.6 views

The vulnerability of the Cisco Stealthwatch Enterprise threat detection and analysis web interface, which arises due to insufficient validation of input data, allows attackers to execute arbitrary commands.

The vulnerability of the Cisco Stealthwatch Enterprise threat detection and analysis web interface exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary commands with administrator privileges...

5.5CVSS8.1AI score0.01501EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/04/06 6:13 p.m.8 views

CVE-2022-20741 Cisco Secure Network Analytics Network Diagrams Application Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of the Network Diagrams application for Cisco Secure Network Analytics, formerly Stealthwatch Enterprise, could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This...

5.4CVSS6AI score0.00557EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/02/01 12:0 a.m.7 views

The vulnerability in the web interface of the Cisco Secure Network Analytics system, previously known as Cisco Stealthwatch Enterprise, allows attackers to execute cross-site scripting attacks.

The vulnerability of the web interface of the Cisco Secure Network Analytics system, previously known as Cisco Stealthwatch Enterprise, is related to insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...

6.4CVSS5.2AI score0.00472EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/26 12:0 a.m.8 views

The vulnerability of the web interface of the Cisco Stealthwatch Enterprise threat detection and analysis system allows a perpetrator to execute a cross-site scripting attack.

The vulnerability of the Cisco Stealthwatch Enterprise threat detection and analysis web interface is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to carry out a cross-site scripting attack using a specially crafted...

5.4CVSS5.6AI score0.00801EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2019/11/26 4:15 a.m.29 views

CVE-2019-15994

A vulnerability in the web-based management interface of Cisco Stealthwatch Enterprise could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected system. The vulnerability is due to insufficient...

6.1CVSS5.5AI score0.00801EPSS
Exploits0References1
OSV
OSV
added 2019/11/26 4:15 a.m.3 views

CVE-2019-15994

A vulnerability in the web-based management interface of Cisco Stealthwatch Enterprise could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected system. The vulnerability is due to insufficient...

6.1CVSS6.3AI score0.00801EPSS
Exploits0References1
Prion
Prion
added 2019/11/26 4:15 a.m.15 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Stealthwatch Enterprise could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected system. The vulnerability is due to insufficient...

4.3CVSS5.9AI score0.00801EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/11/26 3:41 a.m.121 views

CVE-2019-15994

Cisco Stealthwatch Enterprise Web UI contains an XSS vulnerability (CVE-2019-15994) due to insufficient input validation in the web-based management interface. An unauthenticated, remote attacker could entice a user to click a crafted link, enabling arbitrary script execution in the user’s browse...

6.1CVSS5.5AI score0.00801EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2019/11/21 12:0 a.m.1 views

Cisco Stealthwatch Enterprise Cross-Site Scripting Vulnerability

Cisco Stealthwatch Enterprise is a set of enterprise network security protection solutions from the U.S. company Cisco Cisco. The product has security event analysis, network segmentation management and data protection features. A cross-site scripting vulnerability exists in the Web management...

6.1CVSS6.5AI score0.00801EPSS
Exploits0References1
Rows per page
Query Builder