Connected Mobile Experiences Security Vulnerabilities and Issues — Connected Mobile Experiences CVE List

Lucene search

CiscoConnected Mobile Experiences

3 matches found

CVE•added 2019/01/24 3:29 p.m.•61 views

CVE-2019-1645

A vulnerability in the Cisco Connected Mobile Experiences (CMX) software could allow an unauthenticated, adjacent attacker to access sensitive data on an affected device. The vulnerability is due to a lack of input and validation checking mechanisms for certain GET requests to API's on an affected ...

4.3CVSS4.5AI score0.00075EPSS

CVE•added 2021/08/04 6:15 p.m.•52 views

CVE-2021-1522

A vulnerability in the change password API of Cisco Connected Mobile Experiences (CMX) could allow an authenticated, remote attacker to alter their own password to a value that does not comply with the strong authentication requirements that are configured on an affected device. This vulnerability ...

4.3CVSS4.8AI score0.00115EPSS

CVE•added 2021/01/13 10:15 p.m.•35 views

CVE-2021-1143

A vulnerability in Cisco Connected Mobile Experiences (CMX) API authorizations could allow an authenticated, remote attacker to enumerate what users exist on the system. The vulnerability is due to a lack of authorization checks for certain API GET requests. An attacker could exploit this vulnerabi...

4.3CVSS4.6AI score0.00129EPSS