Vulnerabilities (CVE)

Vendor filter

Cisco Subscribe

Filter

4168 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-1918 1 Cisco 1 Carrier Routing System 2019-10-09 6.1
A vulnerability in the implementation of Intermediate System–to–Intermediate System (IS–IS) routing protocol functionality in Cisco IOS XR Software could allow an unauthenticated attacker who is in the same IS-IS area to cause a...
CVE-2019-1917 1 Cisco 1 Vision Dynamic Signage Director 2019-10-09 10.0
A vulnerability in the REST API interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to bypass authentication on an affected system. The vulnerability is due to insufficient validation of HTTP...
CVE-2019-1915 1 Cisco 3 Unified Communications Manager, Unified Communications Manager Im And Presence Service, Unity Connection 2019-10-09 4.3
A vulnerability in the web-based interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition (SME), Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, and...
CVE-2019-1911 1 Cisco 1 Hosted Collaboration Solution 2019-10-09 4.6
A vulnerability in the CLI of Cisco Unified Communications Domain Manager (Cisco Unified CDM) Software could allow an authenticated, local attacker to escape the restricted shell. The vulnerability is due to insufficient input validation of shell...
CVE-2019-1910 1 Cisco 2 Carrier Routing System, Ios Xr 2019-10-09 6.1
A vulnerability in the implementation of the Intermediate System–to–Intermediate System (IS–IS) routing protocol functionality in Cisco IOS XR Software could allow an unauthenticated attacker who is in the same IS–IS area...
CVE-2019-1909 1 Cisco 1 Ios Xr 2019-10-09 4.3
A vulnerability in the implementation of Border Gateway Protocol (BGP) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected system. The vulnerability is...
CVE-2019-1908 1 Cisco 1 Unified Computing System 2019-10-09 5.0
A vulnerability in the Intelligent Platform Management Interface (IPMI) implementation of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to view sensitive system information. The vulnerability is due...
CVE-2019-1907 1 Cisco 2 Integrated Management Controller Supervisor, Unified Computing System 2019-10-09 6.5
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to set sensitive configuration values and gain elevated privileges. The vulnerability is due to improper handling of...
CVE-2019-1906 1 Cisco 1 Prime Infrastructure 2019-10-09 4.0
A vulnerability in the Virtual Domain system of Cisco Prime Infrastructure (PI) could allow an authenticated, remote attacker to change the virtual domain configuration, which could lead to privilege escalation. The vulnerability is due to...
CVE-2019-1905 1 Cisco 1 Email Security Appliance 2019-10-09 5.0
A vulnerability in the GZIP decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured content filters on the device. The vulnerability is due to...
CVE-2019-1904 1 Cisco 1 Ios Xe 2019-10-09 6.8
A vulnerability in the web-based UI (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to insufficient CSRF...
CVE-2019-1903 1 Cisco 1 Security Manager 2019-10-09 6.4
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote attacker to access sensitive information or cause a denial of service (DoS) condition. The vulnerability is due to improper restrictions on XML entities. An attacker...
CVE-2019-1901 1 Cisco 1 Nx-os 2019-10-09 8.3
A vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an adjacent, unauthenticated attacker to cause a denial of service (DoS)...
CVE-2019-1900 1 Cisco 1 Unified Computing System 2019-10-09 7.8
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to cause the web server process to crash, causing a denial of service (DoS) condition on an affected system. The...
CVE-2019-1896 1 Cisco 1 Unified Computing System 2019-10-09 9.0
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to inject arbitrary commands and obtain root privileges. The vulnerability is due to insufficient...
CVE-2019-1894 1 Cisco 1 Enterprise Nfv Infrastructure Software 2019-10-09 9.0
A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker with administrator privileges to overwrite or read arbitrary files on the underlying operating system (OS) of an affected...
CVE-2019-1893 1 Cisco 1 Enterprise Nfv Infrastructure Software 2019-10-09 7.2
A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system (OS) of an affected device as root. The vulnerability is due to...
CVE-2019-1890 1 Cisco 1 Application Policy Infrastructure Controller 2019-10-09 3.3
A vulnerability in the fabric infrastructure VLAN connection establishment of the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, adjacent attacker to bypass security...
CVE-2019-1889 1 Cisco 1 Application Policy Infrastructure Controller 2019-10-09 9.0
A vulnerability in the REST API for software device management in Cisco Application Policy Infrastructure Controller (APIC) Software could allow an authenticated, remote attacker to escalate privileges to root on an affected device. The...
CVE-2019-1887 1 Cisco 1 Unified Communications Manager 2019-10-09 5.0
A vulnerability in the Session Initiation Protocol (SIP) protocol implementation of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to...