Application Policy Infrastructure Controller Security Vulnerabilities and Issues — Application Policy Infrastructure Controller CVE List

Lucene search

CiscoApplication Policy Infrastructure Controller

3 matches found

CVE•added 2020/01/26 5:15 a.m.•112 views

CVE-2020-3139

A vulnerability in the out of band (OOB) management interface IP table rule programming for Cisco Application Policy Infrastructure Controller (APIC) could allow an unauthenticated, remote attacker to bypass configured deny entries for specific IP ports. These IP ports would be permitted to the OOB...

5.3CVSS5.3AI score0.00219EPSS

CVE•added 2020/06/03 6:15 p.m.•42 views

CVE-2020-3333

A vulnerability in the API of Cisco Application Services Engine Software could allow an unauthenticated, remote attacker to update event policies on an affected device. The vulnerability is due to insufficient authentication of users who modify policies on an affected device. An attacker could expl...

5.3CVSS5.4AI score0.00552EPSS

CVE•added 2020/06/03 6:15 p.m.•40 views

CVE-2020-3335

A vulnerability in the key store of Cisco Application Services Engine Software could allow an authenticated, local attacker to read sensitive information of other users on an affected device. The vulnerability is due to insufficient authorization limitations. An attacker could exploit this vulnerab...

5.5CVSS5.1AI score0.00044EPSS