3 matches found
CVE-2024-20345
Cisco AppDynamics Controller is affected by a file-upload vulnerability that enables authenticated, remote directory traversal due to insufficient input validation. Affected component: the file upload function within Cisco AppDynamics Controller. Root cause: improper validation of user-supplied i...
CVE-2024-20346
The CVE-2024-20346 issue affects Cisco AppDynamics Controller’s web-based management interface. It is a reflected cross-site scripting (XSS) vulnerability caused by insufficient validation of user-supplied input. An authenticated, remote attacker could entice a user to click a malicious link, ena...
CVE-2022-20736
The CVE-2022-20736 issue affects Cisco AppDynamics Controller web-based management interface. It stems from improper authorization checking for HTTP requests, allowing an unauthenticated, remote attacker to access a configuration file and the login page for an administrative console that should b...