Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco enterprise nfv infrastructure software vulnerabilities and exploits
(subscribe to this query)
9.9
CVSSv3
CVE-2022-20777
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an malicious user to escape from the guest virtual machine (VM) to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more ...
Cisco Enterprise Nfv Infrastructure Software
1 Article
9.8
CVSSv3
CVE-2021-34746
A vulnerability in the TACACS+ authentication, authorization and accounting (AAA) feature of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote malicious user to bypass authentication and log in to an affected device as an administrator. T...
Cisco Enterprise Nfv Infrastructure Software
1 Article
9.8
CVSSv3
CVE-2020-3446
A vulnerability in Cisco Virtual Wide Area Application Services (vWAAS) with Cisco Enterprise NFV Infrastructure Software (NFVIS)-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote malicious user to log into the NFV...
Cisco Encs 5406-w Firmware 6.4\\(1\\)
Cisco Encs 5406-w Firmware 6.4\\(3d\\)
Cisco Encs 5408-w Firmware 6.4\\(1\\)
Cisco Encs 5408-w Firmware 6.4\\(3d\\)
Cisco Encs 5412-w Firmware 6.4\\(1\\)
Cisco Encs 5412-w Firmware 6.4\\(3d\\)
Cisco Csp 5228-w Firmware 6.4\\(1\\)
Cisco Csp 5228-w Firmware 6.4\\(3d\\)
Cisco Csp 5436-w Firmware 6.4\\(1\\)
Cisco Csp 5436-w Firmware 6.4\\(3d\\)
9.8
CVSSv3
CVE-2019-1971
A vulnerability in the web portal of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote malicious user to perform a command injection attack and execute arbitrary commands with root privileges. The vulnerability is due to insufficient inpu...
Cisco Enterprise Network Function Virtualization Infrastructure
9.8
CVSSv3
CVE-2019-1895
A vulnerability in the Virtual Network Computing (VNC) console implementation of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote malicious user to access the VNC console session of an administrative user on an affected device. The vulne...
Cisco Enterprise Network Function Virtualization Infrastructure
8.8
CVSSv3
CVE-2022-20779
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an malicious user to escape from the guest virtual machine (VM) to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more ...
Cisco Enterprise Nfv Infrastructure Software
1 Article
8.8
CVSSv3
CVE-2018-15402
A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote malicious user to conduct cross-site request forgery (CSRF) attacks. The vulnerability is due to improper validation of Origin headers on HTTP requests within the manage...
Cisco Enterprise Network Virtualization Software Nfvis-8.0
Cisco Enterprise Network Virtualization Software Nfvis-9.0
8.8
CVSSv3
CVE-2018-0279
A vulnerability in the Secure Copy Protocol (SCP) server of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to access the shell of the underlying Linux operating system on the affected device. The vulnerability is due to im...
Cisco Enterprise Nfv Infrastructure Software
Cisco Enterprise Nfv Infrastructure Software 3.7.1
8.2
CVSSv3
CVE-2020-10713
A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to...
Gnu Grub2
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Leap 15.2
Vmware Photon Os
3 Github repositories
1 Article
8.1
CVSSv3
CVE-2020-25681
A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow exists in the way RRSets are sorted before validating with DNSSEC data. An attacker on the network, who can forge DNS replies such as that they are accepted as valid, could use this flaw to cause a buff...
Thekelleys Dnsmasq
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »