EUVD-2020-24717

Malware in sbrugna...

CVE-2020-3446

A vulnerability in Cisco Virtual Wide Area Application Services vWAAS with Cisco Enterprise NFV Infrastructure Software NFVIS-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote attacker to log into the NFVIS CLI of an affected devic...

Design/Logic Flaw

A vulnerability in Cisco Virtual Wide Area Application Services vWAAS with Cisco Enterprise NFV Infrastructure Software NFVIS-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote attacker to log into the NFVIS CLI of an affected devic...

CVE-2020-3446 Cisco vWAAS for Cisco ENCS 5400-W Series and CSP 5000-W Series Default Credentials Vulnerability

A vulnerability in Cisco Virtual Wide Area Application Services vWAAS with Cisco Enterprise NFV Infrastructure Software NFVIS-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote attacker to log into the NFVIS CLI of an affected devic...

CVE-2020-3446

CVE-2020-3446 affects Cisco vWAAS on ENCS 5400-W and CSP 5000-W with NFVIS-bundled images. An unauthenticated attacker can log into the NFVIS CLI using default, static passwords, potentially gaining administrator privileges. Exploitation requires access to the NFVIS CLI (or CIMC) on the affected ...

Cisco Critical Flaw Patched in WAN Software Solution

Cisco patched a critical flaw in its wide area network WAN software solution for enterprises, which if exploited could give remote, unauthenticated attackers administrator privileges. The flaw exists in Cisco Virtual Wide Area Application Services vWAAS, which is software that Cisco describes as ...

Cisco vWAAS for Cisco ENCS 5400-W Series and CSP 5000-W Series Default Credentials Vulnerability

A vulnerability in Cisco Virtual Wide Area Application Services vWAAS with Cisco Enterprise NFV Infrastructure Software NFVIS-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote attacker to log into the NFVIS CLI of an affected devic...

CVE-2015-6421

Cisco WAAS/vWAAS CIFS optimization (cifs-ao) is affected. A DoS is possible from crafted CIFS traffic due to insufficient flow handling, causing resource exhaustion and device reload. Affected versions are 5.x prior to 5.3.5d (and 5.4) and 5.5 prior to 5.5.3. Exploitation is described as remote a...

CVE-2015-6421

cifs-ao in the CIFS optimization functionality on Cisco Wide Area Application Service WAAS and Virtual WAAS vWAAS devices 5.x before 5.3.5d and 5.4 and 5.5 before 5.5.3 allows remote attackers to cause a denial of service resource consumption and device reload via crafted network traffic, aka Bug...