Application Policy Infrastructure Controller Security Vulnerabilities and Issues — Application Policy Infrastructure Controller CVE List

Lucene search

CiscoApplication Policy Infrastructure Controller

4 matches found

CVE•added 2025/02/26 5:15 p.m.•84 views

CVE-2025-20116

A vulnerability in the web UI of Cisco APIC could allow an authenticated, remote attacker to perform a stored XSS attack on an affected system. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to improper input validation in the web U...

4.8CVSS5.3AI score0.0003EPSS

CVE•added 2025/02/26 5:15 p.m.•82 views

CVE-2025-20118

A vulnerability in the implementation of the internal system processes of Cisco APIC could allow an authenticated, local attacker to access sensitive information on an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due ...

4.4CVSS4.4AI score0.00021EPSS

CVE•added 2025/02/26 5:15 p.m.•81 views

CVE-2025-20117

A vulnerability in the CLI of Cisco APIC could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to ...

6.7CVSS5.7AI score0.0001EPSS

CVE•added 2025/02/26 5:15 p.m.•71 views

CVE-2025-20119

A vulnerability in the system file permission handling of Cisco APIC could allow an authenticated, local attacker to overwrite critical system files, which could cause a DoS condition. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due ...

6CVSS5.8AI score0.00016EPSS