Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco application policy infrastructure controller software vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2019-1803
A vulnerability in the filesystem management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an authenticated, local attacker with administrator rights to gain elevated privileges as the root user on an affected device. Th...
Cisco Nexus 9000 Series Application Centric Infrastructure -
8.8
CVSSv3
CVE-2021-1579
A vulnerability in an API endpoint of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Application Policy Infrastructure Controller (Cloud APIC) could allow an authenticated, remote attacker with Administrator read-only credentials to elevate privileges o...
Cisco Application Policy Infrastructure Controller
Cisco Cloud Application Policy Infrastructure Controller
1 Article
NA
CVE-2015-4235
Cisco Application Policy Infrastructure Controller (APIC) devices with software prior to 1.0(3o) and 1.1 prior to 1.1(1j) and Nexus 9000 ACI devices with software prior to 11.0(4o) and 11.1 prior to 11.1(1j) do not properly restrict access to the APIC filesystem, which allows rem...
Cisco Nx-os 11.0\\(2j\\)
Cisco Nx-os 11.0\\(2m\\)
Cisco Nx-os 11.0\\(1b\\)
Cisco Nx-os 11.0\\(1c\\)
Cisco Nx-os 11.0\\(3k\\)
Cisco Nx-os 11.0\\(3n\\)
Cisco Nx-os 11.0\\(1d\\)
Cisco Nx-os 11.0\\(1e\\)
Cisco Nx-os 11.0\\(4h\\)
Cisco Application Policy Infrastructure Controller \\(apic\\) 1.0\\(1e\\)
Cisco Nx-os 11.0\\(3f\\)
Cisco Nx-os 11.0\\(3i\\)
7.8
CVSSv3
CVE-2019-1591
A vulnerability in a specific CLI command implementation of Cisco Nexus 9000 Series ACI Mode Switch Software could allow an authenticated, local malicious user to escape a restricted shell on an affected device. The vulnerability is due to insufficient sanitization of user-suppli...
Cisco Nx-os
7.8
CVSSv3
CVE-2019-1585
A vulnerability in the controller authorization functionality of Cisco Nexus 9000 Series ACI Mode Switch Software could allow an authenticated, local malicious user to escalate standard users with root privilege on an affected device. The vulnerability is due to a misconfiguratio...
Cisco Nx-os 8.3\\(0\\)sk\\(0.39\\)
Cisco Application Policy Infrastructure Controller Software
4.4
CVSSv3
CVE-2019-1588
A vulnerability in the Cisco Nexus 9000 Series Fabric Switches running in Application-Centric Infrastructure (ACI) mode could allow an authenticated, local malicious user to read arbitrary files on an affected device. The vulnerability is due to a lack of proper input and validat...
Cisco Nx-os
9.8
CVSSv3
CVE-2019-1804
A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote malicious user to connect to the affected system with the privileges of the root user. The vulnerability ...
Cisco Nexus 9332pq Firmware 14.0\\(3d\\)
Cisco Nexus 93180yc-ex Firmware 14.0\\(3d\\)
Cisco Nexus 93128tx Firmware 14.0\\(3d\\)
Cisco Nexus 93120tx Firmware 14.0\\(3d\\)
Cisco Nexus 93108tc-ex Firmware 14.0\\(3d\\)
Cisco Nexus 9516 Firmware 14.0\\(3d\\)
Cisco Nexus 9508 Firmware 14.0\\(3d\\)
Cisco Nexus 9504 Firmware 14.0\\(3d\\)
Cisco Nexus 9500 Firmware 14.0\\(3d\\)
Cisco Nexus 9396tx Firmware 14.0\\(3d\\)
Cisco Nexus 9396px Firmware 14.0\\(3d\\)
Cisco Nexus 9372tx Firmware 14.0\\(3d\\)
Cisco Nexus 9372px Firmware 14.0\\(3d\\)
1 Article
5.4
CVSSv3
CVE-2023-20230
A vulnerability in the restricted security domain implementation of Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, remote malicious user to read, modify, or delete non-tenant policies (for example, access policies) created by users associa...
Cisco Application Policy Infrastructure Controller
NA
CVE-2015-4225
Cisco Application Policy Infrastructure Controller (APIC) 1.0(1.110a) and 1.0(1e) on Nexus 9000 devices does not properly implement RBAC health scoring, which allows remote authenticated users to obtain sensitive information via unspecified vectors, aka Bug ID CSCuq77485.
Cisco Nx-os 1.0\\(1.110a\\)
Cisco Nx-os 1.0\\(1e\\)
7.4
CVSSv3
CVE-2022-20860
A vulnerability in the SSL/TLS implementation of Cisco Nexus Dashboard could allow an unauthenticated, remote malicious user to alter communications with associated controllers or view sensitive information. This vulnerability exists because SSL server certificates are not valida...
Cisco Nexus Dashboard
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »