4 matches found
CVE-2022-20663
CVE-2022-20663 affects Cisco Secure Network Analytics (formerly Stealthwatch Enterprise). The issue is a cross-site scripting (XSS) vulnerability in the web-based management interface caused by insufficient validation of user-supplied input, exploitable when a user clicks a crafted link. An unaut...
CVE-2022-20797
CVE-2022-20797 is a remote command execution vulnerability in the web-based management interface of Cisco Secure Network Analytics (formerly Cisco Stealthwatch Enterprise). It arises from insufficient input validation in the web UI, allowing an authenticated, remote attacker to inject commands an...
CVE-2022-20741
CVE-2022-20741 concerns the web-based management interface of Cisco Secure Network Analytics (Network Diagrams application). The issue is a cross-site scripting (XSS) vulnerability arising from insufficient validation of user-supplied input in the interface. An authenticated, remote attacker coul...
CVE-2023-20103
Cisco Secure Network Analytics (Stealthwatch) remote code execution (CVE-2023-20103) arises from insufficient validation of input on the web interface, enabling an authenticated attacker to upload a crafted file and execute code as root on an affected device. The attack requires valid Administrat...