Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco enterprise nfv infrastructure software vulnerabilities and exploits
(subscribe to this query)
9.9
CVSSv3
CVE-2022-20777
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an malicious user to escape from the guest virtual machine (VM) to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more ...
Cisco Enterprise Nfv Infrastructure Software
1 Article
9.8
CVSSv3
CVE-2021-34746
A vulnerability in the TACACS+ authentication, authorization and accounting (AAA) feature of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote malicious user to bypass authentication and log in to an affected device as an administrator. T...
Cisco Enterprise Nfv Infrastructure Software
1 Article
9.8
CVSSv3
CVE-2020-3470
Multiple vulnerabilities in the API subsystem of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote malicious user to execute arbitrary code with root privileges. The vulnerabilities are due to improper boundary checks for certain user-supplied in...
Cisco Enterprise Nfv Infrastructure Software
Cisco Integrated Management Controller
9.8
CVSSv3
CVE-2020-3446
A vulnerability in Cisco Virtual Wide Area Application Services (vWAAS) with Cisco Enterprise NFV Infrastructure Software (NFVIS)-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote malicious user to log into the NFV...
Cisco Encs 5406-w Firmware 6.4(1)
Cisco Encs 5406-w Firmware 6.4(3d)
Cisco Encs 5408-w Firmware 6.4(1)
Cisco Encs 5408-w Firmware 6.4(3d)
Cisco Encs 5412-w Firmware 6.4(1)
Cisco Encs 5412-w Firmware 6.4(3d)
Cisco Csp 5228-w Firmware 6.4(1)
Cisco Csp 5228-w Firmware 6.4(3d)
Cisco Csp 5436-w Firmware 6.4(1)
Cisco Csp 5436-w Firmware 6.4(3d)
9.8
CVSSv3
CVE-2019-1971
A vulnerability in the web portal of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote malicious user to perform a command injection attack and execute arbitrary commands with root privileges. The vulnerability is due to insufficient inpu...
Cisco Enterprise Network Function Virtualization Infrastructure
9.8
CVSSv3
CVE-2019-1895
A vulnerability in the Virtual Network Computing (VNC) console implementation of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote malicious user to access the VNC console session of an administrative user on an affected device. The vulne...
Cisco Enterprise Network Function Virtualization Infrastructure
8.8
CVSSv3
CVE-2022-20779
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an malicious user to escape from the guest virtual machine (VM) to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more ...
Cisco Enterprise Nfv Infrastructure Software
1 Article
8.8
CVSSv3
CVE-2018-15402
A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote malicious user to conduct cross-site request forgery (CSRF) attacks. The vulnerability is due to improper validation of Origin headers on HTTP requests within the manage...
Cisco Enterprise Network Virtualization Software Nfvis-8.0
Cisco Enterprise Network Virtualization Software Nfvis-9.0
8.8
CVSSv3
CVE-2018-0279
A vulnerability in the Secure Copy Protocol (SCP) server of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to access the shell of the underlying Linux operating system on the affected device. The vulnerability is due to im...
Cisco Enterprise Nfv Infrastructure Software
Cisco Enterprise Nfv Infrastructure Software 3.7.1
8.2
CVSSv3
CVE-2020-10713
A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to...
Gnu Grub2
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Leap 15.2
Vmware Photon Os
3 Github repositories
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »