Latest CVE Feed
-
7.8
HIGHCVE-2022-20729
A vulnerability in CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to inject XML into the command parser. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerab... Read more
Affected Products : firepower_threat_defense- Published: May. 03, 2022
- Modified: Nov. 21, 2024
-
4.7
MEDIUMCVE-2022-20728
A vulnerability in the client forwarding code of multiple Cisco Access Points (APs) could allow an unauthenticated, adjacent attacker to inject packets from the native VLAN to clients within nonnative VLANs on an affected device. This vulnerability is due... Read more
- Published: Sep. 30, 2022
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2022-20727
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating s... Read more
Affected Products : ios_xe ios ir510_operating_system cgr1000_compute_module ic3000_industrial_compute_gateway- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2022-20726
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating s... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-20725
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating s... Read more
Affected Products : ios_xe ios 861_integrated_services_router 867_integrated_services_router 880_3g_integrated_services_router 881_integrated_services_router 886_integrated_services_router 886va-w_integrated_services_router 886va_integrated_services_router 887_integrated_services_router +58 more products- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
7.6
HIGHCVE-2022-20724
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating s... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2022-20723
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating s... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2022-20722
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating s... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2022-20721
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating s... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2022-20720
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating s... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2022-20719
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating s... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2022-20718
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating s... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-20717
A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2022-20716
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain escalated privileges. This vulnerability is due to improper access control on files within the affected system. A local attacker could exploit this vu... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2022-20715
A vulnerability in the remote access SSL VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an ... Read more
- Published: May. 03, 2022
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2022-20714
A vulnerability in the data plane microcode of Lightspeed-Plus line cards for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause the line card to reset. This vulnerability is due to the incorrect ha... Read more
- Published: Apr. 15, 2022
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2022-20713
A vulnerability in the VPN web client services component of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct browser-based attacks against users o... Read more
- Published: Aug. 10, 2022
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2022-20712
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization... Read more
- Published: Feb. 10, 2022
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2022-20711
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization... Read more
- Published: Feb. 10, 2022
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2022-20710
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization... Read more
- Published: Feb. 10, 2022
- Modified: Nov. 21, 2024