Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
administrator privileges vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-20063
A vulnerability in the inter-device communication mechanisms between devices that are running Cisco Firepower Threat Defense (FTD) Software and devices that are running Cisco Firepower Management (FMC) Software could allow an authenticated, local malicious user to execute arbitra...
Cisco Firepower Management Center
Cisco Firepower Threat Defense
7.5
CVSSv2
CVE-2008-6739
Todd Woolums ASP Download management script 1.03 does not require authentication for setupdownload.asp, which allows remote malicious users to gain administrator privileges via a direct request.
Toddwoolums Asp Download 1.03
1 EDB exploit
9
CVSSv2
CVE-2018-0293
A vulnerability in role-based access control (RBAC) for Cisco NX-OS Software could allow an authenticated, remote malicious user to execute CLI commands that should be restricted for a nonadministrative user. The attacker would have to possess valid user credentials for the devic...
Cisco Nx-os
Cisco Nx-os 8.1\\(0.112\\)s0
Cisco Nx-os 7.3\\(2\\)n1\\(0.395\\)
NA
CVE-2023-20192
Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated attacker with Administrator-level read-only credentials to elevate their privileges to Administrator with read-write credentials on an affected...
Cisco Telepresence Video Communication Server
7.5
CVSSv2
CVE-2018-15379
A vulnerability in which the HTTP web server for Cisco Prime Infrastructure (PI) has unrestricted directory permissions could allow an unauthenticated, remote malicious user to upload an arbitrary file. This file could allow the malicious user to execute commands at the privilege...
Cisco Prime Infrastructure 3.4\\(0.0\\)
Cisco Prime Infrastructure 3.5\\(0.0\\)
Cisco Prime Infrastructure 3.2\\(0.0\\)
Cisco Prime Infrastructure 3.2\\(2.0\\)
Cisco Prime Infrastructure 3.2
Cisco Prime Infrastructure 3.3
Cisco Prime Infrastructure 3.4
Cisco Prime Infrastructure 3.2\\(1.0\\)
Cisco Prime Infrastructure 3.3\\(0.0\\)
1 EDB exploit
NA
CVE-2023-20105
A vulnerability in the change password functionality of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker with Read-only credentials to elevate privileges to Administrator on an affected system. This vuln...
Cisco Telepresence Video Communication Server
6.5
CVSSv2
CVE-2017-6689
A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote malicious user to log in to an affected system as the admin user, aka an Insecure Default Administrator Credentials Vulnerability. More Information: CSCvc76661. Known Affec...
Cisco Elastic Services Controller 2.2\\(9.76\\)
6.5
CVSSv2
CVE-2021-34785
Multiple vulnerabilities in Cisco BroadWorks CommPilot Application Software could allow an authenticated, remote malicious user to delete arbitrary user accounts or gain elevated privileges on an affected system.
Cisco Broadworks Commpilot Application Software
4
CVSSv2
CVE-2021-34786
Multiple vulnerabilities in Cisco BroadWorks CommPilot Application Software could allow an authenticated, remote malicious user to delete arbitrary user accounts or gain elevated privileges on an affected system.
Cisco Broadworks Commpilot Application Software
7.2
CVSSv2
CVE-2018-0294
A vulnerability in the write-erase feature of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local malicious user to configure an unauthorized administrator account for an affected device. The vulnerability exists because the affected software does not...
Cisco Nx-os 7.3\\(2\\)n1\\(0.354\\)
Cisco Nx-os 5.2\\(1\\)sv3\\(1.10\\)
Cisco Nx-os 8.8\\(3.5\\)s0
Cisco Nx-os 7.0\\(3\\)i2\\(4a\\)
Cisco Firepower Extensible Operating System
Cisco Fxos
Cisco Nx-os 4.1\\(2\\)e1\\(1a\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »