Lucene search

K

12 matches found

CVE
CVE
added 2023/10/10 2:15 p.m.4409 views

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

7.5CVSS8AI score0.94434EPSS
CVE
CVE
added 2023/04/05 4:15 p.m.106 views

CVE-2023-20068

A vulnerability in the web-based management interface of Cisco Prime Infrastructure Software could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulnerability is due to insufficient vali...

6.1CVSS6AI score0.00096EPSS
CVE
CVE
added 2023/04/05 7:15 p.m.70 views

CVE-2023-20121

Multiple vulnerabilities in the restricted shell of Cisco Evolved Programmable Network Manager (EPNM), Cisco Identity Services Engine (ISE), and Cisco Prime Infrastructure could allow an authenticated, local attacker to escape the restricted shell and gain root privileges on the underlying operatin...

6.7CVSS6.5AI score0.00071EPSS
CVE
CVE
added 2023/03/03 4:15 p.m.67 views

CVE-2023-20069

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface on an affected device. This vu...

5.4CVSS5.2AI score0.00096EPSS
CVE
CVE
added 2023/04/05 6:15 p.m.61 views

CVE-2023-20127

Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow a remote attacker to obtain privileged information and conduct cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks. For...

6.5CVSS6.5AI score0.00133EPSS
CVE
CVE
added 2023/08/16 10:15 p.m.55 views

CVE-2023-20203

Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface on an affected devic...

5.4CVSS5.1AI score0.00088EPSS
CVE
CVE
added 2023/08/16 10:15 p.m.55 views

CVE-2023-20222

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface on an affected device. The vulnera...

6.1CVSS5.9AI score0.00072EPSS
CVE
CVE
added 2023/08/16 10:15 p.m.49 views

CVE-2023-20205

Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface on an affected devic...

5.4CVSS5.1AI score0.00088EPSS
CVE
CVE
added 2023/08/16 10:15 p.m.43 views

CVE-2023-20201

Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface on an affected devic...

5.4CVSS5.1AI score0.0005EPSS
CVE
CVE
added 2023/04/05 6:15 p.m.41 views

CVE-2023-20129

Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow a remote attacker to obtain privileged information and conduct cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks. For...

6.5CVSS6.5AI score0.00133EPSS
CVE
CVE
added 2023/04/05 6:15 p.m.41 views

CVE-2023-20130

Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow a remote attacker to obtain privileged information and conduct cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks. For...

6.5CVSS6.5AI score0.00075EPSS
CVE
CVE
added 2023/04/05 6:15 p.m.40 views

CVE-2023-20131

Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow a remote attacker to obtain privileged information and conduct cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks. For...

6.5CVSS5.8AI score0.00113EPSS