Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco iot field network director vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-3531
A vulnerability in the REST API of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote malicious user to access the back-end database of an affected system. The vulnerability exists because the affected software does not properly authenticate REST API ca...
Cisco Iot Field Network Director
8.8
CVSSv3
CVE-2020-26075
A vulnerability in the REST API of Cisco IoT Field Network Director (FND) could allow an authenticated, remote malicious user to gain access to the back-end database of an affected device. The vulnerability is due to insufficient input validation of REST API requests that are mad...
Cisco Iot Field Network Director
8.8
CVSSv3
CVE-2018-0270
A vulnerability in the web-based management interface of Cisco IoT Field Network Director (IoT-FND) could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack and alter the data of existing users and groups on an affected device. T...
Cisco Iot Field Network Director 4.2\\(0.4\\)
8.7
CVSSv3
CVE-2020-26072
A vulnerability in the SOAP API of Cisco IoT Field Network Director (FND) could allow an authenticated, remote malicious user to access and modify information on devices that belong to a different domain. The vulnerability is due to insufficient authorization in the SOAP API. An ...
Cisco Iot Field Network Director
7.5
CVSSv3
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Ietf Http 2.0
Nghttp2 Nghttp2
Netty Netty
Envoyproxy Envoy 1.27.0
Envoyproxy Envoy 1.26.4
Envoyproxy Envoy 1.25.9
Envoyproxy Envoy 1.24.10
Eclipse Jetty
Caddyserver Caddy
Golang Http2
Golang Go
Golang Networking
F5 Big-ip Analytics
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Local Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Global Traffic Manager
F5 Big-ip Fraud Protection Service
F5 Big-ip Domain Name System
F5 Big-ip Application Security Manager
F5 Big-ip Application Acceleration Manager
F5 Big-ip Advanced Firewall Manager
34 Github repositories
2 Articles
7.5
CVSSv3
CVE-2022-3602
A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue...
Openssl Openssl
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Netapp Clustered Data Ontap -
Fedoraproject Fedora 26
Fedoraproject Fedora 27
Nodejs Node.js 19.0.0
Nodejs Node.js 18.12.0
Nodejs Node.js
30 Github repositories
1 Article
7.5
CVSSv3
CVE-2022-3786
A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed a malicious certificate or for an application to continue ce...
Openssl Openssl
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Nodejs Node.js 19.0.0
Nodejs Node.js 18.12.0
Nodejs Node.js
24 Github repositories
1 Article
7.5
CVSSv3
CVE-2020-3392
A vulnerability in the API of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote malicious user to view sensitive information on an affected system. The vulnerability exists because the affected software does not properly authenticate API calls. An atta...
Cisco Iot Field Network Director
7.5
CVSSv3
CVE-2020-26076
A vulnerability in Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote malicious user to view sensitive database information on an affected device. The vulnerability is due to the absence of authentication for sensitive information. An attacker could exp...
Cisco Iot Field Network Director
7.5
CVSSv3
CVE-2020-3162
A vulnerability in the Constrained Application Protocol (CoAP) implementation of Cisco IoT Field Network Director could allow an unauthenticated remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient inpu...
Cisco Iot Field Network Director
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »