CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

644 matches found

ATTACKERKB•added 2022/02/17 12:0 a.m.•2 views

CVE-2022-20659

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network EPN Manager could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface of an affected device. This...

6.1CVSS6.8AI score0.00663EPSS

Exploits0References2

Fedora•added 2022/01/23 1:8 a.m.•51 views

[SECURITY] Fedora 34 Update: zabbix-5.0.19-1.fc34

Zabbix is software that monitors numerous parameters of a network and the health and integrity of servers. Zabbix uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. Zabbix offers...

7.3CVSS5.6AI score0.9261EPSS

Exploits1

CNNVD•added 2022/01/19 12:0 a.m.•2 views

Cisco Webex Meetings 跨站脚本漏洞

Cisco Webex Meetings is a video conferencing solution from Cisco. Cisco Webex Meetings suffers from a cross-site scripting vulnerability that stems from a vulnerability in the web-based interface of Cisco Webex Meetings that could allow an unauthenticated, remote attacker to conduct a cross-site...

6.1CVSS5.8AI score0.00232EPSS

Exploits0References3

OSV•added 2022/01/14 5:15 a.m.•1 views

CVE-2022-20635

Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...

6.1CVSS6.6AI score

Exploits0References1

NVD•added 2022/01/14 5:15 a.m.•7 views

CVE-2022-20642

6.1CVSS0.00173EPSS

Exploits0References1

NVD•added 2022/01/14 5:15 a.m.•9 views

CVE-2022-20643

6.1CVSS0.00173EPSS

Exploits0References1

NVD•added 2022/01/14 5:15 a.m.•8 views

CVE-2022-20645

6.1CVSS0.00153EPSS

Exploits0References1

OSV•added 2022/01/14 5:15 a.m.•0 views

CVE-2022-20642

6.1CVSS6.6AI score

Exploits0References1

Prion•added 2022/01/14 5:15 a.m.•12 views

Cross site scripting

4.3CVSS6.2AI score0.00153EPSS

Exploits0References1Affected Software1

Prion•added 2022/01/14 5:15 a.m.•14 views

Cross site scripting

4.3CVSS6.2AI score0.00234EPSS

Exploits0References1Affected Software1

CVE•added 2022/01/14 5:5 a.m.•72 views

CVE-2022-20639

Cisco Security Manager’s web-based management interface contains cross-site scripting vulnerabilities due to insufficient input validation. An unauthenticated remote attacker could lure a user to click a crafted link to execute arbitrary script code in the interface’s context or access browser-ba...

6.1CVSS6.2AI score0.00173EPSS

Exploits0References1Affected Software1

CVE•added 2022/01/14 5:1 a.m.•148 views

CVE-2022-20647

Cisco Security Manager’s web-based management interface contains cross-site scripting vulnerabilities caused by insufficient input validation. An unauthenticated, remote attacker could lure a user to click a crafted link to execute arbitrary script code within the interface or access browser-base...

6.1CVSS6.2AI score0.00234EPSS

Exploits0References1Affected Software1

CVE•added 2022/01/14 5:0 a.m.•75 views

CVE-2022-20644

CVE-2022-20644 refers to multiple cross-site scripting vulnerabilities in Cisco Security Manager’s web-based management interface. Root cause: insufficient validation of user-supplied input. Exploitation requires convincing a user to click a crafted link, enabling an unauthenticated, remote attac...

6.1CVSS6.2AI score0.00173EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/01/14 5:0 a.m.•13 views

CVE-2022-20643 Cisco Security Manager Cross-Site Scripting Vulnerabilities

6.1CVSS6.4AI score0.00173EPSS

Exploits0References1

ATTACKERKB•added 2022/01/13 12:0 a.m.•2 views

CVE-2022-20639

6.1CVSS6.6AI score0.00173EPSS

Exploits0References2

Positive Technologies•added 2022/01/12 12:0 a.m.•3 views

PT-2022-1430 · Cisco · Cisco Ece

Name of the Vulnerable Software and Affected Versions: Cisco ECE affected versions not specified Description: A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the...

6.4CVSS6.3AI score0.0038EPSS

Exploits0References9

Prion•added 2021/12/08 10:15 p.m.•15 views

Cross site scripting

An error in a page handler of the VRM may lead to a reflected cross site scripting XSS in the web-based interface. To exploit this vulnerability an attack must be able to modify the HTTP header that is sent. This issue also affects installations of the DIVAR IP and BVMS with VRM installed...

4.3CVSS5.9AI score0.00251EPSS

Exploits0References1Affected Software2

Cvelist•added 2021/12/08 9:17 p.m.•20 views

CVE-2021-23860 Reflected Cross Site Scripting (XSS) vulnerability in Bosch VRM / BVMS

5CVSS6.1AI score0.00251EPSS

Exploits0References1

Packet Storm•added 2021/12/06 12:0 a.m.•454 views

Auerswald COMfortel 1400/2600/3600 IP 2.8F Authentication Bypass

Advisory: Auerswald COMfortel 1400/2600/3600 IP Authentication Bypass RedTeam Pentesting discovered a vulnerability in the web-based configuration management interface of the Auerswald COMfortel 1400 and 2600 IP desktop phones. The vulnerability allows accessing configuration data and settings in...

0.3AI score0.88104EPSS

Exploits4

OSV•added 2021/11/04 4:15 p.m.•2 views

CVE-2021-40115

A vulnerability in Cisco Webex Video Mesh could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface. An attacker...

6.1CVSS6.6AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by