CVE-2024-20270

A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This...

Cross site scripting

A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This...

Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This...

PT-2024-1511 · Cisco · Cisco Broadworks Xtended Services Platform +2

Name of the Vulnerable Software and Affected Versions: Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform affected versions not specified Cisco NX-OS Software affected versions not specified Description: A vulnerability in the web-based management...

CVE-2023-20238

CVE-2023-20238 affects Cisco BroadWorks Application Delivery Platform and BroadWorks Xtended Services Platform. The issue is an authentication bypass in the SSO token validation logic, allowing an unauthenticated, remote attacker to forge credentials and access the system. Potential impacts inclu...

Cisco BroadWorks Application Security Vulnerability

Cisco BroadWorks Application is an enterprise-grade calling and collaboration platform from Cisco USA. A security vulnerability exists in the Cisco BroadWorks Application Delivery Platform and Xtended Services Platform that stems from an improper method used to authenticate SSO tokens, allowing a...

PT-2023-4831 · Cisco · Cisco Broadworks Application Delivery Platform +1

Name of the Vulnerable Software and Affected Versions: Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform affected versions not specified Description: A vulnerability in the single sign-on SSO implementation of the affected platforms could allow an...

CVE-2023-20020

CVE-2023-20020 affects Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform (Device Management Servlet). It stems from improper input validation when parsing HTTP requests, enabling an unauthenticated, remote attacker to send a sustained stream of crafted ...

CVE-2023-20020

A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due...

Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Denial of Service Vulnerability

A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due...

PT-2022-6769 · Cisco · Cisco Broadworks Xtended Services Platform +3

Name of the Vulnerable Software and Affected Versions: Cisco BroadWorks CommPilot Application Software affected versions not specified Cisco BroadWorks Application Server AS affected versions not specified Cisco BroadWorks Xtended Services Platform XSP affected versions not specified BroadWorks...