Vision Dynamic Signage Director Security Vulnerabilities and Issues — Vision Dynamic Signage Director CVE List

Lucene search

CiscoVision Dynamic Signage Director

7 matches found

CVE•added 2020/10/08 5:15 a.m.•54 views

CVE-2020-3598

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to access confidential information or make configuration changes. The vulnerability is due to missing authentication for a specific section of the web-based...

6.5CVSS6.4AI score0.00256EPSS

CVE•added 2020/09/23 1:15 a.m.•46 views

CVE-2019-16004

A vulnerability in the REST API endpoint of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to bypass authentication on an affected device. The vulnerability is due to missing authentication on some of the API calls. An attacker could exploit this vulnerability...

6.5CVSS6.6AI score0.00247EPSS

CVE•added 2020/08/26 5:15 p.m.•41 views

CVE-2020-3491

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative privileges to conduct a cross-site scripting (XSS) attack against a user of the interface on an affected device. The vulnerability exists ...

5.5CVSS5AI score0.00216EPSS

CVE•added 2020/08/26 5:15 p.m.•40 views

CVE-2020-3485

A vulnerability in the role-based access control (RBAC) functionality of the web management software of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker to access resources that they should not be able to access and perform actions that they should not be able to ...

6.5CVSS6.2AI score0.00066EPSS

CVE•added 2020/08/26 5:15 p.m.•38 views

CVE-2020-3490

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative privileges to conduct directory traversal attacks and obtain read access to sensitive files on an affected system. The vulnerability exist...

6.8CVSS4.9AI score0.0028EPSS

CVE•added 2020/08/26 5:15 p.m.•34 views

CVE-2020-3484

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to view potentially sensitive information on an affected device. The vulnerability is due to incorrect permissions within Apache configuration. An attacker ...

5.3CVSS5.1AI score0.00108EPSS

CVE•added 2020/07/16 6:15 p.m.•31 views

CVE-2020-3450

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative credentials to conduct SQL injection attacks on an affected system. The vulnerability is due to improper validation of user-submitted para...

4.9CVSS5.5AI score0.00183EPSS