|
310001
|
6.5 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could allow an authenticated, remote attacker to conduct a path traversal attack on an affected device. To e…
|
CWE-24
Path Traversal: '../filedir'
|
CVE-2022-20656
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310002
|
6.1 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based …
|
CWE-80
Basic XSS
|
CVE-2022-20654
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310003
|
6.5 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based management interface and in the API subsystem of Cisco Tetration could allow an authenticated, remote attacker to inject arbitrary commands to be executed with r…
|
CWE-78
OS Command
|
CVE-2022-20652
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310004
|
8.1 |
HIGH
Network
|
-
|
-
|
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in…
|
CWE-489
Exposure of Data Element to Wrong Session
|
CVE-2022-20649
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310005
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in a debug function for Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform debug actions that could result in the disclosure of c…
|
CWE-200
Information Exposure
|
CVE-2022-20648
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310006
|
4.7 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to redirect a user to an undesired web page.
This vulnerability is due to impr…
|
CWE-601
Open Redirect
|
CVE-2022-20634
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310007
|
6.1 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface of an affected device.…
|
-
|
CVE-2022-20631
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310008
|
- |
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco Prime Access Registrar Appliance could allow an authenticated, remote attacker to conduct a cross-site scripting attack against a u…
|
CWE-79
Cross-site Scripting
|
CVE-2022-20626
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310009
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the implementation of the Simple Network Management Protocol (SNMP) IPv4 access control list (ACL) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenti…
|
CWE-284
Improper Access Control
|
CVE-2024-20373
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310010
|
9.1 |
CRITICAL
Network
|
-
|
-
|
A vulnerability in the external authentication mechanism of Cisco Modeling Labs could allow an unauthenticated, remote attacker to access the web interface with administrative privileges.
This vul…
|
CWE-305
Authentication Bypass by Primary Weakness
|
CVE-2023-20154
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
