4 matches found
CVE-2016-1473
CVE-2016-1473 affects Cisco Small Business 220 Series Smart Plus Switches (Sx220) running firmware prior to 1.0.1.1, which ships with a hardcoded default SNMP community that allows unauthenticated remote access to read/modify SNMP objects. The underlying issue is the presence of a default SNMP co...
CVE-2016-1471
CVE-2016-1471 describes a Cross-site Scripting (XSS) vulnerability in the web-based management interface of Cisco Small Business 220 Series Smart Plus Switches (Sx220) with firmware prior to 1.0.1.1. The root cause is insufficient validation of user-supplied input in the web interface, allowing a...
CVE-2016-1472
The CVE-2016-1472 issue affects Cisco Small Business 220 Series Smart Plus Switches (Sx220) with firmware prior to 1.0.1.1. The vulnerability resides in the web-based management interface where insufficient validation of HTTP requests allows an unauthenticated, remote attacker to cause the web UI...
CVE-2016-1470
CVE-2016-1470 describes a cross-site request forgery (CSRF) in the web-based management interface of Cisco Small Business 220 Series Smart Plus Switches. Affected devices run firmware prior to 1.0.1.1. The root cause is insufficient CSRF protections, allowing an unauthenticated or remote attacker...