Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco application policy infrastructure controller vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2019-1889
A vulnerability in the REST API for software device management in Cisco Application Policy Infrastructure Controller (APIC) Software could allow an authenticated, remote malicious user to escalate privileges to root on an affected device. The vulnerability is due to incomplete va...
Cisco Application Policy Infrastructure Controller 4.1(1j)
7.1
CVSSv3
CVE-2017-6767
A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, remote malicious user to gain higher privileges than the account is assigned. The attacker will be granted the privileges of the last user to log in, regardless of whether t...
Cisco Application Policy Infrastructure Controller 1.2(3)
Cisco Application Policy Infrastructure Controller 1.0(4o)
Cisco Application Policy Infrastructure Controller 1.0(4h)
Cisco Application Policy Infrastructure Controller 1.0(3i)
Cisco Application Policy Infrastructure Controller 2.0 Base
Cisco Application Policy Infrastructure Controller 1.0(2j)
Cisco Application Policy Infrastructure Controller 1.0(1n)
Cisco Application Policy Infrastructure Controller 1.0(2m)
Cisco Application Policy Infrastructure Controller 1.2.2
Cisco Application Policy Infrastructure Controller 1.1(3f)
Cisco Application Policy Infrastructure Controller 1.2(2)
Cisco Application Policy Infrastructure Controller 1.0(1h)
Cisco Application Policy Infrastructure Controller 1.0(3k)
Cisco Application Policy Infrastructure Controller 1.0(3n)
Cisco Application Policy Infrastructure Controller 1.3(2)
Cisco Application Policy Infrastructure Controller 1.0(3f)
Cisco Application Policy Infrastructure Controller 1.2 Base
Cisco Application Policy Infrastructure Controller 1.0(1e)
Cisco Application Policy Infrastructure Controller 2.0(1)
Cisco Application Policy Infrastructure Controller 1.0(1k)
Cisco Application Policy Infrastructure Controller 1.3(1)
Cisco Application Policy Infrastructure Controller 1.1(0.920a)
6.7
CVSSv3
CVE-2019-1803
A vulnerability in the filesystem management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an authenticated, local attacker with administrator rights to gain elevated privileges as the root user on an affected device. Th...
Cisco Nexus 9000 Series Application Centric Infrastructure -
6.7
CVSSv3
CVE-2017-12352
A vulnerability in certain system script files that are installed at boot time on Cisco Application Policy Infrastructure Controllers could allow an authenticated, local malicious user to gain elevated privileges and execute arbitrary commands with root privileges on an affected ...
Cisco Application Policy Infrastructure Controller 2.3(1f)
6.6
CVSSv3
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0
Apache Log4j
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Weblogic Server 12.2.1.4.0
Oracle Primavera Unifier 19.12
Oracle Weblogic Server 14.1.1.0.0
Oracle Primavera Unifier 20.12
Oracle Communications Interactive Session Recorder 6.3
Oracle Communications Interactive Session Recorder 6.4
Oracle Primavera Gateway
Oracle Retail Assortment Planning 16.0.3
Oracle Primavera Unifier 21.12
Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Primavera Gateway 21.12.0
Oracle Retail Fiscal Management 14.2
Oracle Siebel Ui Framework 21.12
Oracle Communications Diameter Signaling Router
Cisco Cloudcenter 4.10.0.16
Fedoraproject Fedora 34
Fedoraproject Fedora 35
34 Github repositories
4 Articles
6.5
CVSSv3
CVE-2021-1396
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote malicious user to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For mor...
Cisco Application Services Engine
Cisco Application Policy Infrastructure Controller 1.1.3
1 Article
6.5
CVSSv3
CVE-2021-1228
A vulnerability in the fabric infrastructure VLAN connection establishment of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, adjacent malicious user to bypass security validations and connect an unauthorize...
Cisco Nx-os 11.0(1b)
Cisco Nx-os 11.0(1c)
Cisco Nx-os 11.0(1d)
Cisco Nx-os 11.0(1e)
Cisco Nx-os 11.0(2j)
Cisco Nx-os 11.0(2m)
Cisco Nx-os 11.0(3f)
Cisco Nx-os 11.0(3i)
Cisco Nx-os 11.0(3k)
Cisco Nx-os 11.0(3n)
Cisco Nx-os 11.0(3o)
Cisco Nx-os 11.0(4g)
Cisco Nx-os 11.0(4h)
Cisco Nx-os 11.0(4o)
Cisco Nx-os 11.0(4q)
Cisco Nx-os 11.1(1j)
Cisco Nx-os 11.1(1o)
Cisco Nx-os 11.1(1r)
Cisco Nx-os 11.1(1s)
Cisco Nx-os 11.1(2h)
Cisco Nx-os 11.1(2i)
Cisco Nx-os 11.1(3f)
6.5
CVSSv3
CVE-2015-7851
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp Ntp 4.2.8
Ntp Ntp
6.5
CVSSv3
CVE-2019-1890
A vulnerability in the fabric infrastructure VLAN connection establishment of the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, adjacent malicious user to bypass security validations and connect an unauthoriz...
Cisco Application Policy Infrastructure Controller 7.3(0)zn(0.113)
6.5
CVSSv3
CVE-2019-1690
A vulnerability in the management interface of Cisco Application Policy Infrastructure Controller (APIC) software could allow an unauthenticated, adjacent malicious user to gain unauthorized access on an affected device. The vulnerability is due to a lack of proper access control...
Cisco Application Policy Infrastructure Controller
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »