Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco application services engine vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2022-20906
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local malicious user to elevate privileges on an affected device. These vulnerabilities are due to insufficient input validation during CLI command execution on an affected device. An attacker could e...
Cisco Nexus Dashboard
6.7
CVSSv3
CVE-2022-20907
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local malicious user to elevate privileges on an affected device. These vulnerabilities are due to insufficient input validation during CLI command execution on an affected device. An attacker could e...
Cisco Nexus Dashboard
6.7
CVSSv3
CVE-2022-20908
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local malicious user to elevate privileges on an affected device. These vulnerabilities are due to insufficient input validation during CLI command execution on an affected device. An attacker could e...
Cisco Nexus Dashboard
6.7
CVSSv3
CVE-2022-20909
Multiple vulnerabilities in Cisco Nexus Dashboard could allow an authenticated, local malicious user to elevate privileges on an affected device. These vulnerabilities are due to insufficient input validation during CLI command execution on an affected device. An attacker could e...
Cisco Nexus Dashboard
6.7
CVSSv3
CVE-2018-0275
A vulnerability in the support tunnel feature of Cisco Identity Services Engine (ISE) could allow an authenticated, local malicious user to access the device's shell. The vulnerability is due to improper configuration of the support tunnel feature. An attacker could exploit ...
Cisco Identity Services Engine
6.5
CVSSv3
CVE-2022-20913
A vulnerability in Cisco Nexus Dashboard could allow an authenticated, remote malicious user to write arbitrary files on an affected device. This vulnerability is due to insufficient input validation in the web-based management interface of Cisco Nexus Dashboard. An attacker with...
Cisco Nexus Dashboard
6
CVSSv3
CVE-2023-20030
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to access sensitive information, conduct a server-side request forgery (SSRF) attack through an affected device, or negatively impact ...
Cisco Identity Services Engine 3.2
Cisco Identity Services Engine
8.8
CVSSv3
CVE-2023-20272
A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote malicious user to upload malicious files to the web root of the application. This vulnerability is due to insufficient file input validation. An attacker c...
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
NA
CVE-2010-2629
The Cisco Content Services Switch (CSS) 11500 with software 8.20.4.02 and the Application Control Engine (ACE) 4710 with software A2(3.0) do not properly handle LF header terminators in situations where the GET line is terminated by CRLF, which allows remote malicious users to co...
Cisco Content Services Switch 11500 08.20.1.01
Cisco Content Services Switch 11500 8.20.1.01
Cisco Content Services Switch 11500 8.20.0.01
Cisco Content Services Switch 11500
Cisco Content Services Switch 11500 8.20.2.01
Cisco Ace 4710 A1\\(8.0\\)
Cisco Ace 4710 A1\\(2.0\\)
Cisco Ace 4710
NA
CVE-2010-1576
The Cisco Content Services Switch (CSS) 11500 with software prior to 8.20.4.02 and the Application Control Engine (ACE) 4710 with software before A2(3.0) do not properly handle use of LF, CR, and LFCR as alternatives to the standard CRLF sequence between HTTP headers, which allow...
Cisco Content Services Switch 11500 8.20.0.01
Cisco Content Services Switch 11500 08.20.1.01
Cisco Content Services Switch 11500
Cisco Content Services Switch 11500 8.20.2.01
Cisco Content Services Switch 11500 8.20.1.01
Cisco Ace 4710 A1\\(8.0\\)
Cisco Ace 4710 A1\\(2.0\\)
Cisco Ace 4710
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »