Lucene search

K

5 matches found

CVE
CVE
added 2024/11/15 4:15 p.m.64 views

CVE-2022-20631

A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface of an affected device.The vulnerability exists because the web-based management interface does not properly validate user-suppl...

6.1CVSS6.4AI score0.00096EPSS
CVE
CVE
added 2024/11/15 5:15 p.m.61 views

CVE-2022-20633

A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to perform a username enumeration attack against an affected device. This vulnerability is due to differences in authentication responses that are sent back from the application as par...

5.3CVSS5.4AI score0.00086EPSS
CVE
CVE
added 2024/11/15 5:15 p.m.58 views

CVE-2022-20632

A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface of an affected device.The vulnerability exists because the web-based management interface does not properly validate user-suppl...

6.1CVSS6.3AI score0.00071EPSS
CVE
CVE
added 2024/04/03 5:15 p.m.58 views

CVE-2024-20367

A vulnerability in the web UI of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web UI does not properly validate user-supplied input. An attack...

5.4CVSS6AI score0.00118EPSS
CVE
CVE
added 2024/11/06 5:15 p.m.43 views

CVE-2024-20484

A vulnerability in the External Agent Assignment Service (EAAS) feature of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of Media Routing ...

7.5CVSS7.5AI score0.00141EPSS