Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
enterprise virtualization vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-0460
A vulnerability in the REST API of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to read any file on an affected system. The vulnerability is due to insufficient authorization and parameter validation checks. An attacker ...
Cisco Network Functions Virtualization Infrastructure -
4
CVSSv2
CVE-2021-3634
A flaw has been found in libssh in versions before 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secret_hash and the other session_id. Initially, both of them are the same, but after key re-exchange, previous s...
Libssh Libssh
Redhat Virtualization 4.0
Redhat Enterprise Linux 8.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Oracle Mysql Workbench
Netapp Cloud Backup -
5.5
CVSSv2
CVE-2019-1984
A vulnerability in Cisco Enterprise Network Functions Virtualization Infrastructure Software (NFVIS) could allow an authenticated, remote attacker with administrator privileges to overwrite files on the underlying operating system (OS) of an affected device. The vulnerability is ...
Cisco Enterprise Network Function Virtualization Infrastructure Sofware
7.2
CVSSv2
CVE-2020-3236
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local malicious user to gain root shell access to the underlying operating system and overwrite or read arbitrary files. The attacker would need valid administrative c...
Cisco Enterprise Network Function Virtualization Infrastructure
6.4
CVSSv2
CVE-2019-1946
A vulnerability in the web-based management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote malicious user to bypass authentication and get limited access to the web-based management interface. The vulnerability is due to a...
Cisco Enterprise Network Function Virtualization Infrastructure
4
CVSSv2
CVE-2019-1953
A vulnerability in the web portal of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to view a password in clear text. The vulnerability is due to incorrectly logging the admin password when a user is forced to modify the d...
Cisco Enterprise Network Function Virtualization Infrastructure
2.1
CVSSv2
CVE-2019-1959
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local malicious user to read arbitrary files on the underlying operating system (OS) of an affected device. For more information about these vulnerabilities, see the Det...
Cisco Enterprise Network Function Virtualization Infrastructure
2.1
CVSSv2
CVE-2019-1960
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local malicious user to read arbitrary files on the underlying operating system (OS) of an affected device. For more information about these vulnerabilities, see the Det...
Cisco Enterprise Network Function Virtualization Infrastructure
6.8
CVSSv2
CVE-2019-1961
A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to read arbitrary files on the underlying operating system (OS) of an affected device. The vulnerability is due to the improper input validation of tar pack...
Cisco Enterprise Network Function Virtualization Infrastructure
3.5
CVSSv2
CVE-2019-1973
A vulnerability in the web portal framework of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based interface. The vulnerability is due to improper i...
Cisco Enterprise Network Function Virtualization Infrastructure
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »