Lucene search
K
CiscoSecure Network Analytics*

4 matches found

CVE
CVE
added 2024/11/15 3:38 p.m.109 views

CVE-2022-20663

CVE-2022-20663 affects Cisco Secure Network Analytics (formerly Stealthwatch Enterprise). The issue is a cross-site scripting (XSS) vulnerability in the web-based management interface caused by insufficient validation of user-supplied input, exploitable when a user clicks a crafted link. An unaut...

6.1CVSS6.1AI score0.00472EPSS
CVE
CVE
added 2022/05/27 2:6 p.m.87 views

CVE-2022-20797

CVE-2022-20797 is a remote command execution vulnerability in the web-based management interface of Cisco Secure Network Analytics (formerly Cisco Stealthwatch Enterprise). It arises from insufficient input validation in the web UI, allowing an authenticated, remote attacker to inject commands an...

9.1CVSS6.9AI score0.01501EPSS
CVE
CVE
added 2022/04/06 6:13 p.m.74 views

CVE-2022-20741

CVE-2022-20741 concerns the web-based management interface of Cisco Secure Network Analytics (Network Diagrams application). The issue is a cross-site scripting (XSS) vulnerability arising from insufficient validation of user-supplied input in the interface. An authenticated, remote attacker coul...

5.4CVSS5.2AI score0.00557EPSS
CVE
CVE
added 2023/04/05 12:0 a.m.45 views

CVE-2023-20103

Cisco Secure Network Analytics (Stealthwatch) remote code execution (CVE-2023-20103) arises from insufficient validation of input on the web interface, enabling an authenticated attacker to upload a crafted file and execute code as root on an affected device. The attack requires valid Administrat...

7.2CVSS6.4AI score0.00897EPSS