Vulnerabilities (CVE)

Vendor filter

Cisco Subscribe

Filter

3962 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-1625 1 Cisco 1 Sd-wan Firmware 2019-06-25 7.2
A vulnerability in the CLI of Cisco SD-WAN Solution could allow an authenticated, local attacker to elevate lower-level privileges to the root user on an affected device. The vulnerability is due to insufficient authorization enforcement. An...
CVE-2019-1899 1 Cisco 3 Rv110w Firmware, Rv130w Firmware, Rv215w Firmware 2019-06-25 5.0
A vulnerability in the web interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to acquire the list of devices that are connected to the guest network. The vulnerability is due to improper...
CVE-2019-1898 1 Cisco 3 Rv110w Firmware, Rv130w Firmware, Rv215w Firmware 2019-06-25 5.0
A vulnerability in the web-based management interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to access the syslog file on an affected device. The vulnerability is due to improper authorization...
CVE-2019-1897 1 Cisco 3 Rv110w Firmware, Rv130w Firmware, Rv215w Firmware 2019-06-25 5.0
A vulnerability in the web-based management interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to disconnect clients that are connected to the guest network on an affected router. The...
CVE-2019-1627 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-06-24 4.0
A vulnerability in the Server Utilities of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to gain unauthorized access to sensitive user information from the configuration data that is stored on the...
CVE-2019-1628 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-06-24 2.1
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to cause a buffer overflow, resulting in a denial of service (DoS) condition on an affected device. The vulnerability...
CVE-2019-1629 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-06-24 5.0
A vulnerability in the configuration import utility of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to have write access and upload arbitrary data to the filesystem. The vulnerability is due to a...
CVE-2019-1632 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-06-24 6.0
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected...
CVE-2019-1630 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-06-24 2.1
A vulnerability in the firmware signature checking program of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to cause a buffer overflow, resulting in a denial of service (DoS) condition. The...
CVE-2019-1874 1 Cisco 1 Prime Service Catalog 2019-06-24 6.8
A vulnerability in the web-based management interface of Cisco Prime Service Catalog Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to...
CVE-2019-1623 1 Cisco 1 Meeting Server 2019-06-24 7.2
A vulnerability in the CLI configuration shell of Cisco Meeting Server could allow an authenticated, local attacker to inject arbitrary commands as the root user. The vulnerability is due to insufficient input validation during the execution of a...
CVE-2019-1631 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-06-21 5.0
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to access potentially sensitive system usage information. The vulnerability is due to a lack of...
CVE-2019-1875 1 Cisco 1 Prime Service Catalog 2019-06-21 3.5
A vulnerability in the web-based management interface of Cisco Prime Service Catalog could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface. The vulnerability is due...
CVE-2019-1821 1 Cisco 3 Evolved Programmable Network Manager, Network Level Service, Prime Infrastructure 2019-06-19 10.0
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote attacker to execute code with root-level privileges on the...
CVE-2015-0653 1 Cisco 3 Telepresence Video Communication Server Software, Expressway Software, Telepresence Conductor 2019-06-11 10.0
The management interface in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X7.2.4, X8 before X8.1.2, and X8.2 before X8.2.2 and Cisco TelePresence Conductor before X2.3.1 and XC2.4 before XC2.4.1 allows remote...
CVE-2019-1842 1 Cisco 1 Ios Xr Firmware 2019-06-10 5.5
A vulnerability in the Secure Shell (SSH) authentication function of Cisco IOS XR Software could allow an authenticated, remote attacker to successfully log in to an affected device using two distinct usernames. The vulnerability is due to a...
CVE-2019-1845 1 Cisco 2 Telepresence Video Communication Server, Unified Communications Manager Im And Presence Service 2019-06-07 5.0
A vulnerability in the authentication service of the Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, Cisco TelePresence Video Communication Server (VCS), and Cisco Expressway Series could allow an...
CVE-2019-1882 1 Cisco 1 Industrial Network Director 2019-06-07 3.5
A vulnerability in Cisco Industrial Network Director could allow an authenticated, remote attacker to conduct stored cross-site scripting (XSS) attacks. The vulnerability is due to improper validation of content submitted to the affected...
CVE-2019-1881 1 Cisco 1 Industrial Network Director 2019-06-07 6.8
A vulnerability in the web-based management interface of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected...
CVE-2019-1872 1 Cisco 1 Telepresence Video Communication Server 2019-06-07 5.0
A vulnerability in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway Series software could allow an unauthenticated, remote attacker to cause an affected system to send arbitrary network requests. The vulnerability is due...