Latest CVE Feed
-
4.8
MEDIUMCVE-2021-34760
A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is... Read more
Affected Products : telepresence_management_suite- EPSS Score: %0.17
- Published: Oct. 21, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-34759
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the inter... Read more
Affected Products : identity_services_engine- EPSS Score: %0.17
- Published: Sep. 02, 2021
- Modified: Nov. 21, 2024
-
4.4
MEDIUMCVE-2021-34758
A vulnerability in the memory management of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an authenticated, local attacker to corrupt a shared memory segment, resulting in a denial of service (DoS) condition... Read more
- EPSS Score: %0.05
- Published: Oct. 06, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-34757
Multiple vulnerabilities in Cisco Business 220 Series Smart Switches firmware could allow an attacker with Administrator privileges to access sensitive login credentials or reconfigure the passwords on the user account. For more information about these vu... Read more
Affected Products : business_220-8t-e-2g_firmware business_220-8p-e-2g_firmware business_220-8fp-e-2g_firmware business_220-16t-2g_firmware business_220-16p-2g_firmware business_220-24t-4g_firmware business_220-24p-4g_firmware business_220-24fp-4g_firmware business_220-48t-4g_firmware business_220-48p-4g_firmware +22 more products- EPSS Score: %0.28
- Published: Oct. 06, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-34756
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. For more information about these vulnerabilities, see the Details section... Read more
- EPSS Score: %0.11
- Published: Oct. 27, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-34755
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. For more information about these vulnerabilities, see the Details section... Read more
- EPSS Score: %0.09
- Published: Oct. 27, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-34748
A vulnerability in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to perform a command injection attack on an affected device. This vulnerability is due to insufficient input validati... Read more
Affected Products : intersight_virtual_appliance- EPSS Score: %1.73
- Published: Oct. 06, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-34746
A vulnerability in the TACACS+ authentication, authorization and accounting (AAA) feature of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an unauthenticated, remote attacker to bypass authentication and log in to an affected device as ... Read more
Affected Products : enterprise_nfv_infrastructure_software- EPSS Score: %2.69
- Published: Sep. 02, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-34745
A vulnerability in the AppDynamics .NET Agent for Windows could allow an attacker to leverage an authenticated, local user account to gain SYSTEM privileges. This vulnerability is due to the .NET Agent Coordinator Service executing code with SYSTEM privil... Read more
Affected Products : appdynamics_.net_agent- EPSS Score: %0.04
- Published: Aug. 18, 2021
- Modified: Nov. 21, 2024
-
4.9
MEDIUMCVE-2021-34744
Multiple vulnerabilities in Cisco Business 220 Series Smart Switches firmware could allow an attacker with Administrator privileges to access sensitive login credentials or reconfigure the passwords on the user account. For more information about these vu... Read more
Affected Products : business_220-8t-e-2g_firmware business_220-8p-e-2g_firmware business_220-8fp-e-2g_firmware business_220-16t-2g_firmware business_220-16p-2g_firmware business_220-24t-4g_firmware business_220-24p-4g_firmware business_220-24fp-4g_firmware business_220-48t-4g_firmware business_220-48p-4g_firmware +22 more products- EPSS Score: %0.46
- Published: Oct. 06, 2021
- Modified: Nov. 21, 2024
-
7.1
HIGHCVE-2021-34743
A vulnerability in the application integration feature of Cisco Webex Software could allow an unauthenticated, remote attacker to authorize an external application to integrate with and access a user's account without that user's express consent. This vul... Read more
Affected Products : webex_meetings- EPSS Score: %0.23
- Published: Oct. 21, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-34742
A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulne... Read more
Affected Products : vision_dynamic_signage_director- EPSS Score: %0.15
- Published: Oct. 06, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-34741
A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to perform a denial of service (DoS) attack against an affected device. This vulnerability i... Read more
- EPSS Score: %0.24
- Published: Nov. 04, 2021
- Modified: Nov. 21, 2024
-
7.4
HIGHCVE-2021-34740
A vulnerability in the WLAN Control Protocol (WCP) implementation for Cisco Aironet Access Point (AP) software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. Thi... Read more
Affected Products : aironet_access_point_software aironet_access_point_software 1100-4g\/6g_integrated_services_router 1100-4p_integrated_services_router 1100-8p_integrated_services_router 1100_integrated_services_router 1101-4p_integrated_services_router 1101_integrated_services_router 1109-2p_integrated_services_router 1109-4p_integrated_services_router +62 more products- EPSS Score: %0.10
- Published: Sep. 23, 2021
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2021-34739
A vulnerability in the web-based management interface of multiple Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to replay valid user session credentials and gain unauthorized access to the web-based management interf... Read more
Affected Products : sf300-08_firmware sf302-08_firmware sf302-08p_firmware sf302-08pp_firmware sf302-08mp_firmware sf302-08mpp_firmware sf300-24_firmware sf300-24p_firmware sf300-24pp_firmware sf300-24mp_firmware +408 more products- EPSS Score: %0.25
- Published: Nov. 04, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-34738
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. For more information about these vulner... Read more
Affected Products : identity_services_engine- EPSS Score: %0.53
- Published: Oct. 21, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-34737
A vulnerability in the DHCP version 4 (DHCPv4) server feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to trigger a crash of the dhcpd process, resulting in a denial of service (DoS) condition. This vulnerability exists bec... Read more
- EPSS Score: %0.38
- Published: Sep. 09, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-34736
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote attacker to cause the web-based management interface to unexpectedly restart. The vulnerability is due to... Read more
Affected Products : unified_computing_system ucs_c480_m5 ucs_c125_m5 ucs_c220_m5 ucs_c240_m5 ucs_c4200 ucs_s3260 ucs_c220_m4 ucs_c460_m4 ucs_c22_m3 +13 more products- EPSS Score: %0.16
- Published: Oct. 21, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-34735
Multiple vulnerabilities in the Cisco ATA 190 Series Analog Telephone Adapter Software could allow an attacker to perform a command injection attack resulting in remote code execution or cause a denial of service (DoS) condition on an affected device. For... Read more
- EPSS Score: %1.51
- Published: Oct. 06, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-34734
A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for the Cisco Video Surveillance 7000 Series IP Cameras firmware could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. This vulnerability ... Read more
Affected Products : video_surveillance_7000_ip_camera_firmware- EPSS Score: %0.10
- Published: Aug. 18, 2021
- Modified: Nov. 21, 2024