Latest CVE Feed
-
7.8
HIGHCVE-2021-34745
A vulnerability in the AppDynamics .NET Agent for Windows could allow an attacker to leverage an authenticated, local user account to gain SYSTEM privileges. This vulnerability is due to the .NET Agent Coordinator Service executing code with SYSTEM privil... Read more
Affected Products : appdynamics_.net_agent- EPSS Score: %0.04
- Published: Aug. 18, 2021
- Modified: Nov. 21, 2024
-
4.9
MEDIUMCVE-2021-34744
Multiple vulnerabilities in Cisco Business 220 Series Smart Switches firmware could allow an attacker with Administrator privileges to access sensitive login credentials or reconfigure the passwords on the user account. For more information about these vu... Read more
Affected Products : business_220-8t-e-2g_firmware business_220-8p-e-2g_firmware business_220-8fp-e-2g_firmware business_220-16t-2g_firmware business_220-16p-2g_firmware business_220-24t-4g_firmware business_220-24p-4g_firmware business_220-24fp-4g_firmware business_220-48t-4g_firmware business_220-48p-4g_firmware +22 more products- EPSS Score: %0.46
- Published: Oct. 06, 2021
- Modified: Nov. 21, 2024
-
7.1
HIGHCVE-2021-34743
A vulnerability in the application integration feature of Cisco Webex Software could allow an unauthenticated, remote attacker to authorize an external application to integrate with and access a user's account without that user's express consent. This vul... Read more
Affected Products : webex_meetings- EPSS Score: %0.23
- Published: Oct. 21, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-34742
A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulne... Read more
Affected Products : vision_dynamic_signage_director- EPSS Score: %0.15
- Published: Oct. 06, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-34741
A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to perform a denial of service (DoS) attack against an affected device. This vulnerability i... Read more
- EPSS Score: %0.24
- Published: Nov. 04, 2021
- Modified: Nov. 21, 2024
-
7.4
HIGHCVE-2021-34740
A vulnerability in the WLAN Control Protocol (WCP) implementation for Cisco Aironet Access Point (AP) software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. Thi... Read more
Affected Products : aironet_access_point_software aironet_access_point_software 1100-4g\/6g_integrated_services_router 1100-4p_integrated_services_router 1100-8p_integrated_services_router 1100_integrated_services_router 1101-4p_integrated_services_router 1101_integrated_services_router 1109-2p_integrated_services_router 1109-4p_integrated_services_router +62 more products- EPSS Score: %0.10
- Published: Sep. 23, 2021
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2021-34739
A vulnerability in the web-based management interface of multiple Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to replay valid user session credentials and gain unauthorized access to the web-based management interf... Read more
Affected Products : sf300-08_firmware sf302-08_firmware sf302-08p_firmware sf302-08pp_firmware sf302-08mp_firmware sf302-08mpp_firmware sf300-24_firmware sf300-24p_firmware sf300-24pp_firmware sf300-24mp_firmware +408 more products- EPSS Score: %0.25
- Published: Nov. 04, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-34738
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. For more information about these vulner... Read more
Affected Products : identity_services_engine- EPSS Score: %0.53
- Published: Oct. 21, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-34737
A vulnerability in the DHCP version 4 (DHCPv4) server feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to trigger a crash of the dhcpd process, resulting in a denial of service (DoS) condition. This vulnerability exists bec... Read more
- EPSS Score: %0.38
- Published: Sep. 09, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-34736
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote attacker to cause the web-based management interface to unexpectedly restart. The vulnerability is due to... Read more
Affected Products : unified_computing_system ucs_c480_m5 ucs_c125_m5 ucs_c220_m5 ucs_c240_m5 ucs_c4200 ucs_s3260 ucs_c220_m4 ucs_c460_m4 ucs_c22_m3 +13 more products- EPSS Score: %0.16
- Published: Oct. 21, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-34735
Multiple vulnerabilities in the Cisco ATA 190 Series Analog Telephone Adapter Software could allow an attacker to perform a command injection attack resulting in remote code execution or cause a denial of service (DoS) condition on an affected device. For... Read more
- EPSS Score: %1.51
- Published: Oct. 06, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-34734
A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for the Cisco Video Surveillance 7000 Series IP Cameras firmware could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. This vulnerability ... Read more
Affected Products : video_surveillance_7000_ip_camera_firmware- EPSS Score: %0.10
- Published: Aug. 18, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-34733
A vulnerability in the CLI of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, local attacker to access sensitive information stored on the underlying file system of an affected system. This vul... Read more
- EPSS Score: %0.05
- Published: Sep. 02, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-34732
A vulnerability in the web-based management interface of Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to in... Read more
Affected Products : prime_collaboration_provisioning- EPSS Score: %0.15
- Published: Sep. 02, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-34731
A vulnerability in the web-based management interface of Cisco Prime Access Registrar could allow an authenticated, remote attacker to perform a stored cross-site scripting attack on an affected system. This vulnerability exists because the web-based mana... Read more
Affected Products : prime_access_registrar- EPSS Score: %0.17
- Published: Nov. 04, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-34730
A vulnerability in the Universal Plug-and-Play (UPnP) service of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly, ... Read more
Affected Products : application_extension_platform small_business_rv_series_router_firmware rv130w_wireless-n_multifunction_vpn_router_firmware rv215w_wireless-n_vpn_router_firmware rv110w_wireless-n_vpn_firewall_firmware rv130_vpn_router_firmware rv110w_wireless-n_vpn_firewall rv130_vpn_router rv130w_wireless-n_multifunction_vpn_router rv215w_wireless-n_vpn_router- EPSS Score: %35.78
- Published: Aug. 18, 2021
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2021-34729
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software and Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary commands with elevated privileges on an affected device. This vulnerability is due to insufficient valid... Read more
- EPSS Score: %0.15
- Published: Sep. 23, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-34728
Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged account to elevate privileges on an affected device. For more information about these vulnerabilities, see the Details section ... Read more
- EPSS Score: %0.29
- Published: Sep. 09, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-34727
A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected device. This vulnerability is due to insufficient bounds checking when an affected device proc... Read more
Affected Products : sd-wan ios_xe_sd-wan asr_1001 asr_1002 asr_1002-x asr_1004 asr_1006 asr_1013 1100-4g\/6g_integrated_services_router 1100-4p_integrated_services_router +40 more products- EPSS Score: %1.00
- Published: Sep. 23, 2021
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2021-34726
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to be executed with root-level privileges on the underlying operating system of an affected device. This vulnerability is due to ... Read more
- EPSS Score: %0.15
- Published: Sep. 23, 2021
- Modified: Nov. 21, 2024