Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
application policy infrastructure controller vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2019-1889
A vulnerability in the REST API for software device management in Cisco Application Policy Infrastructure Controller (APIC) Software could allow an authenticated, remote malicious user to escalate privileges to root on an affected device. The vulnerability is due to incomplete va...
Cisco Application Policy Infrastructure Controller 4.1\\(1j\\)
9
CVSSv2
CVE-2021-1580
Multiple vulnerabilities in the web UI and API endpoints of Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC could allow a remote malicious user to perform a command injection or file upload attack on an affected system. For more information about the...
Cisco Application Policy Infrastructure Controller
Cisco Cloud Application Policy Infrastructure Controller
6.4
CVSSv2
CVE-2021-1581
Multiple vulnerabilities in the web UI and API endpoints of Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC could allow a remote malicious user to perform a command injection or file upload attack on an affected system. For more information about the...
Cisco Application Policy Infrastructure Controller
Cisco Cloud Application Policy Infrastructure Controller
NA
CVE-2023-20011
A vulnerability in the web-based management interface of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Network Controller, formerly Cisco Cloud APIC, could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) a...
Cisco Cloud Network Controller
Cisco Application Policy Infrastructure Controller
3.5
CVSSv2
CVE-2021-1582
A vulnerability in the web UI of Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC could allow an authenticated, remote malicious user to perform a stored cross-site scripting attack on an affected system. This vulnerability is due to improper input va...
Cisco Application Policy Infrastructure Controller
Cisco Cloud Application Policy Infrastructure Controller
3.3
CVSSv2
CVE-2019-1690
A vulnerability in the management interface of Cisco Application Policy Infrastructure Controller (APIC) software could allow an unauthenticated, adjacent malicious user to gain unauthorized access on an affected device. The vulnerability is due to a lack of proper access control...
Cisco Application Policy Infrastructure Controller
9
CVSSv2
CVE-2018-0427
A vulnerability in the CronJob scheduler API of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote malicious user to perform a command injection attack. The vulnerability is due to incorrect input validation of user-supplied data. An attacker cou...
Cisco Application Policy Infrastructure Controller Enterprise Module Dnac1.1
2.1
CVSSv2
CVE-2019-1586
A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) Software could allow an unauthenticated, local attacker with physical access to obtain sensitive information from an affected device. The vulnerability is due to insecure removal of cleartext encryption ...
Cisco Application Policy Infrastructure Controller 4.1\\(0.90a\\)
7.2
CVSSv2
CVE-2019-1682
A vulnerability in the FUSE filesystem functionality for Cisco Application Policy Infrastructure Controller (APIC) software could allow an authenticated, local malicious user to escalate privileges to root on an affected device. The vulnerability is due to insufficient input vali...
Cisco Application Policy Infrastructure Controller
2.1
CVSSv2
CVE-2018-0368
A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an authenticated, local malicious user to access sensitive information on an affected system. The vulnerability is due to insufficient security restrictions imposed by the affected software. An attacke...
Cisco Application Policy Infrastructure Controller Enterprise Module 1.1 Base
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »