Lucene search
K
CiscoApplication Services Engine

4 matches found

CVE
CVE
added 2021/02/24 7:31 p.m.72 views

CVE-2021-1393

Cisco Application Services Engine (ASE) is affected by CVE-2021-1393 and CVE-2021-1396 due to insufficient access controls in a Data Network service/API, enabling unauthenticated, remote attackers to gain privileged host-level access, learn device-specific information, create diagnostic files, an...

10CVSS9.8AI score0.0225EPSS
CVE
CVE
added 2021/02/24 7:31 p.m.64 views

CVE-2021-1396

CVE-2021-1396 affects Cisco Application Services Engine (ASE) and enables an unauthenticated, remote attacker to access privileged host-level operations via insufficient access controls in an ASE Data Network API. Impact includes learning device-specific information, creating diagnostic files in ...

9.8CVSS8.4AI score0.01006EPSS
CVE
CVE
added 2020/06/03 5:56 p.m.54 views

CVE-2020-3333

CVE-2020-3333 affects Cisco Application Services Engine (APIC) Software API responsible for event policies. The root cause is insufficient authentication of users who modify policies, enabling an unauthenticated, remote attacker to craft HTTP requests to contact an affected device and update even...

5.3CVSS5.4AI score0.0104EPSS
CVE
CVE
added 2020/06/03 5:56 p.m.52 views

CVE-2020-3335

CVE-2020-3335 affects Cisco Application Services Engine Software. The issue is in the keystore and stems from insufficient authorization restrictions, allowing an authenticated, local attacker to read other users’ sensitive information on an affected device. Impact is read access to user data wit...

5.5CVSS5.1AI score0.00279EPSS