|
1321
|
6.4 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco IoT Field Network Director could allow an authenticated, remote attacker with low privileges to access files and execute commands on a r…
|
CWE-77
Command Injection
|
CVE-2026-20169
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1322
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct browser-based attacks. To exploit this vulnerability, the a…
|
CWE-646
Reliance on File Name or Extension of Externally-Supplied File
|
CVE-2026-20172
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1323
|
7.7 |
HIGH
Network
|
-
|
-
|
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco 350 Series Managed Switches (SG350) and Cisco 350X Series Stackable Managed Switches (SG350X) firmware co…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-20185
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1324
|
7.5 |
HIGH
Network
|
-
|
-
|
A vulnerability in the connection-handling mechanism of Cisco Crosswork Network Controller (CNC) and Cisco Network Services Orchestrator (NSO) could allow an unauthenticated, remote attacker to cause…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-20188
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1325
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the log file download functionality of Cisco Prime Infrastructure could allow an authenticated, remote attacker to download arbitrary log files from the server.
This vulner…
|
CWE-862
Missing Authorization
|
CVE-2026-20189
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1326
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the RADIUS Policy API endpoints of Cisco ISE could allow an authenticated, remote attacker with read-only Administrator privileges to gain unauthorized access to sensitive inf…
|
CWE-862
Missing Authorization
|
CVE-2026-20193
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1327
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in an identity management API endpoint of Cisco ISE could allow an unauthenticated, remote attacker to enumerate valid user accounts on an affected device.
This vulnerability exist…
|
CWE-204
Response Discrepancy Information Exposure
|
CVE-2026-20195
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1328
|
5.4 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the REST API of Cisco Slido could have allowed an authenticated, remote attacker to access the social profile data of other users or affect quiz and poll results. Cisco has address…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-20219
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1329
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ALSA: caiaq: take a reference on the USB device in create_card()
The caiaq driver stores a pointer to the parent USB device in
cd…
|
NVD-CWE-noinfo
|
CVE-2026-31701
|
2026-05-7 03:55 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1330
|
7.5 |
HIGH
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: correctly handle tunneled traffic on IPV6_CSUM GSO fallback
NETIF_F_IPV6_CSUM only advertises support for checksum offload o…
|
NVD-CWE-noinfo
|
CVE-2026-43057
|
2026-05-7 03:48 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
