Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infrastructure vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-1153
Cross-site request forgery (CSRF) vulnerability in the web interface in Cisco Prime Infrastructure allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCue84676.
Cisco Prime Infrastructure -
NA
CVE-2014-2152
Cross-site request forgery (CSRF) vulnerability in the INSERT page in Cisco Prime Infrastructure (PI) allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCun21868.
Cisco Prime Infrastructure -
NA
CVE-2014-2147
The web interface in Cisco Prime Infrastructure 2.1 and previous versions does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "c...
Cisco Prime Infrastructure
NA
CVE-2014-2153
Multiple cross-site scripting (XSS) vulnerabilities in INSERT pages in Cisco Prime Infrastructure allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCun21869.
Cisco Prime Infrastructure -
7.8
CVSSv3
CVE-2017-6768
A vulnerability in the build procedure for certain executable system files installed at boot time on Cisco Application Policy Infrastructure Controller (APIC) devices could allow an authenticated, local malicious user to gain root-level privileges. The vulnerability is due to a c...
Cisco Application Policy Infrastructure Controller 1.3\\(1\\)
Cisco Application Policy Infrastructure Controller 1.1\\(1j\\)
Cisco Application Policy Infrastructure Controller 2.0\\(1\\)
Cisco Application Policy Infrastructure Controller 1.1\\(0.920a\\)
Cisco Application Policy Infrastructure Controller 1.3\\(2\\)
Cisco Application Policy Infrastructure Controller 1.3\\(2f\\)
Cisco Application Policy Infrastructure Controller 1.2\\(2\\)
Cisco Application Policy Infrastructure Controller 1.1\\(3f\\)
Cisco Application Policy Infrastructure Controller 1.2 Base
Cisco Application Policy Infrastructure Controller 1.2\\(3\\)
Cisco Application Policy Infrastructure Controller 2.0 Base
Cisco Application Policy Infrastructure Controller 1.2.2
6.7
CVSSv3
CVE-2018-0324
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, high-privileged, local malicious user to perform a command injection attack. The vulnerability is due to insufficient input validation of command parameters in the CLI...
Cisco Network Functions Virtualization Infrastructure 3.6.1
Cisco Network Functions Virtualization Infrastructure 3.7.1
Cisco Network Functions Virtualization Infrastructure 3.6.2
7.8
CVSSv3
CVE-2021-1421
A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local malicious user to perform a command injection attack on an affected device. The vulnerability is due to insufficient validation of user-supplied input to a configuration co...
Cisco Enterprise Nfv Infrastructure Software
8.2
CVSSv3
CVE-2023-23693
Dell VxRail, versions before 7.0.450, contains an OS command injection Vulnerability in DCManager command-line utility. A local high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's unde...
Dell Vxrail Hyperconverged Infrastructure
7.8
CVSSv3
CVE-2023-23694
Dell VxRail versions earlier than 7.0.450, contain(s) an OS command injection vulnerability in VxRail Manager. A local authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, ...
Dell Vxrail Hyperconverged Infrastructure
9.8
CVSSv3
CVE-2020-7199
A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could be remotely exploited to bypass remote authentication leading to execution of arbitrary commands, gainin...
Hp Edgeline Infrastructure Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »