Lucene search
K

16823 matches found

NVD
NVD
added 2025/08/14 5:15 p.m.5 views

CVE-2025-20148

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, remote attacker to inject arbitrary HTML content into a device-generated document. This vulnerability is due to improper validation of user-supplied data. An...

8.5CVSS0.00402EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 4:31 p.m.4 views

CVE-2025-20306 Cisco Secure Firewall Management Center Software Command Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, remote attacker with Administrator-level privileges to execute arbitrary commands on the underlying operating system. This vulnerability is due to insufficie...

4.9CVSS7.9AI score0.00344EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/14 4:31 p.m.8 views

CVE-2025-20306 Cisco Secure Firewall Management Center Software Command Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, remote attacker with Administrator-level privileges to execute arbitrary commands on the underlying operating system. This vulnerability is due to insufficie...

4.9CVSS0.00344EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 4:31 p.m.3 views

CVE-2025-20302 Cisco Secure Firewall Management Center Software Authorization Bypass Vulnerability

A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an authenticated, low-privileged, remote attacker to retrieve a generated report from a different domain. This vulnerability is due to missing authorization checks. An attacker could exploit this...

4.3CVSS7AI score0.00269EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/14 4:30 p.m.7 views

CVE-2025-20301 Cisco Secure Firewall Management Center Software Authorization Bypass Vulnerability

A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an authenticated, low-privileged, remote attacker to access troubleshoot files for a different domain. This vulnerability is due to missing authorization checks. An attacker could exploit this...

6.5CVSS0.00334EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 4:30 p.m.3 views

CVE-2025-20301 Cisco Secure Firewall Management Center Software Authorization Bypass Vulnerability

A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an authenticated, low-privileged, remote attacker to access troubleshoot files for a different domain. This vulnerability is due to missing authorization checks. An attacker could exploit this...

6.5CVSS6.7AI score0.00334EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/08/14 4:30 p.m.4 views

CVE-2025-20265

A vulnerability in the RADIUS subsystem implementation of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to inject arbitrary shell commands that are executed by the device. This vulnerability is due to a lack of proper handling of user input...

10CVSS6AI score0.14468EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/08/14 4:28 p.m.10 views

CVE-2025-20235 Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of...

6.1CVSS0.00273EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 4:28 p.m.3 views

CVE-2025-20235 Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of...

6.1CVSS6.3AI score0.00273EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 4:28 p.m.28 views

CVE-2025-20235

CVE-2025-20235 is a cross-site scripting (XSS) vulnerability in Cisco Secure Firewall Management Center (FMC) Web UI. Multiple connected sources confirm unauthenticated remote exploitation through insufficient input validation in the FMC web-based management interface, allowing arbitrary script e...

6.1CVSS6.3AI score0.00273EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/08/14 4:28 p.m.9 views

CVE-2025-20218 Cisco Secure Firepower Management Center Software XPATH Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, remote attacker to retrieve sensitive information from an affected device. This vulnerability is due to insufficient input validation. An attacker could...

4.9CVSS0.00419EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 4:28 p.m.22 views

CVE-2025-20218

Cisco Secure Firewall Management Center (FMC) Software is affected by a vulnerability in its web-based management interface caused by insufficient input validation. An authenticated remote attacker with valid administrative credentials could send a crafted request to retrieve sensitive informatio...

4.9CVSS6.7AI score0.00419EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/14 4:28 p.m.6 views

CVE-2025-20218 Cisco Secure Firepower Management Center Software XPATH Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, remote attacker to retrieve sensitive information from an affected device. This vulnerability is due to insufficient input validation. An attacker could...

4.9CVSS6.7AI score0.00419EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 4:28 p.m.3 views

CVE-2025-20148 Cisco Secure Firewall Management Center HTML Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, remote attacker to inject arbitrary HTML content into a device-generated document. This vulnerability is due to improper validation of user-supplied data. An...

8.5CVSS6.9AI score0.00402EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/14 4:0 p.m.6 views

Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of...

6.1CVSS6.3AI score0.00273EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/14 4:0 p.m.15 views

Cisco Secure Firewall Management Center Software RADIUS Remote Code Execution Vulnerability

A vulnerability in the RADIUS subsystem implementation of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to inject arbitrary shell commands that are executed by the device. This vulnerability is due to a lack of proper handling of user input...

10CVSS7.8AI score0.14468EPSS
Exploits1References1
Cisco
Cisco
added 2025/08/14 4:0 p.m.7 views

Cisco Secure Firewall Management Center Software XPATH Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, remote attacker to retrieve sensitive information from an affected device. This vulnerability is due to insufficient input validation. An attacker could...

4.9CVSS6.7AI score0.00419EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/14 4:0 p.m.7 views

Cisco Secure Firewall Management Center Software Authorization Bypass Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, remote attacker to access files that they are not authorized to access. For more information about these vulnerabilities, see the Details "details"...

6.5CVSS7.1AI score0.00334EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/14 11:29 a.m.5 views

CVE-2025-33023

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions, RUGGEDCOM ROX MX5000RE All versions, RUGGEDCOM ROX RX1400 All versions, RUGGEDCOM ROX RX1500 All versions, RUGGEDCOM ROX RX1501 All versions, RUGGEDCOM ROX RX1510 All versions, RUGGEDCOM ROX RX1511 All versions, RUGGEDCOM R...

5.1CVSS7.3AI score0.00272EPSS
Exploits0References1
NVD
NVD
added 2025/08/14 9:15 a.m.14 views

CVE-2025-48862

Ambiguous wording in the web interface of the ctrlX OS setup mechanism could lead the user to believe that the backup file is encrypted when a password is set. However, only the private key - if available in the backup - is encrypted, while the backup file itself remains unencrypted...

7.1CVSS0.00106EPSS
Exploits0References1
Rows per page
Query Builder