Latest CVE Feed
-
8.1
HIGHCVE-2021-1363
Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. These vulnerabilities ar... Read more
Affected Products : unified_communications_manager_im_and_presence_service- Published: May. 06, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1362
A vulnerability in the SOAP API endpoint of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, Cisco Unity Connection, and Cisco Prime Lice... Read more
- Published: Apr. 08, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-1361
A vulnerability in the implementation of an internal file management service for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode that are running Cisco NX-OS Software could allow an unauthenticated, remote at... Read more
Affected Products : nx-os nexus_3000 nexus_3100 nexus_3100-z nexus_3100v nexus_3200 nexus_3400 nexus_3500 nexus_3600 nexus_9000v +39 more products- Published: Feb. 24, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1360
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly. T... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1359
A vulnerability in the configuration management of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to perform command injection and elevate privileges to root. This vulnerability is due to insufficient va... Read more
- Published: Jul. 08, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-1358
A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. This vulnerability is due to improper input validation of the URL parameters in an HTTP req... Read more
- Published: May. 22, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-1357
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an attacker to conduct path traversal attacks and SQL injection attacks on an affected system. One of the SQL injection vulnerabil... Read more
Affected Products : unified_communications_manager_im_and_presence_service unified_communications_manager- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2021-1356
Multiple vulnerabilities in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to cause the web UI software to become unresponsive and consume vty line instances, resulting in a denial of service (D... Read more
Affected Products : ios_xe- Published: Mar. 24, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-1355
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an attacker to conduct path traversal attacks and SQL injection attacks on an affected system. One of the SQL injection vulnerabil... Read more
Affected Products : unified_communications_manager_im_and_presence_service unified_communications_manager- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2021-1354
A vulnerability in the certificate registration process of Cisco Unified Computing System (UCS) Central Software could allow an authenticated, adjacent attacker to register a rogue Cisco Unified Computing System Manager (UCSM). This vulnerability is due t... Read more
Affected Products : unified_computing_system_central_software- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2021-1353
A vulnerability in the IPv4 protocol handling of Cisco StarOS could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a memory leak that occurs during packet processin... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
7.4
HIGHCVE-2021-1352
A vulnerability in the DECnet Phase IV and DECnet/OSI protocol processing of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficie... Read more
Affected Products : ios_xe- Published: Mar. 24, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-1351
A vulnerability in the web-based interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface of the affected service. The vulnerability is due t... Read more
Affected Products : webex_meetings- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-1350
A vulnerability in the web UI of Cisco Umbrella could allow an unauthenticated, remote attacker to negatively affect the performance of this service. The vulnerability exists due to insufficient rate limiting controls in the web UI. An attacker could expl... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-1349
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct Cypher query language injection attacks on an affected system. The vulnerability is due to insufficient input v... Read more
Affected Products : sd-wan_vmanage- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1348
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an authenticated, remote attacker to execute arbitrary code or cause an affected device to restart une... Read more
Affected Products : small_business_rv_series_router_firmware rv016_multi-wan_vpn_router_firmware rv042_dual_wan_vpn_router_firmware rv042g_dual_gigabit_wan_vpn_router_firmware rv082_dual_wan_vpn_router_firmware rv320_dual_gigabit_wan_vpn_router_firmware rv325_dual_gigabit_wan_vpn_router_firmware rv016_multi-wan_vpn_router rv042_dual_wan_vpn_router rv042g_dual_gigabit_wan_vpn_router +3 more products- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1347
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an authenticated, remote attacker to execute arbitrary code or cause an affected device to restart une... Read more
Affected Products : small_business_rv_series_router_firmware rv016_multi-wan_vpn_router_firmware rv042_dual_wan_vpn_router_firmware rv042g_dual_gigabit_wan_vpn_router_firmware rv082_dual_wan_vpn_router_firmware rv320_dual_gigabit_wan_vpn_router_firmware rv325_dual_gigabit_wan_vpn_router_firmware rv016_multi-wan_vpn_router rv042_dual_wan_vpn_router rv042g_dual_gigabit_wan_vpn_router +3 more products- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1346
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an authenticated, remote attacker to execute arbitrary code or cause an affected device to restart une... Read more
Affected Products : small_business_rv_series_router_firmware rv016_multi-wan_vpn_router_firmware rv042_dual_wan_vpn_router_firmware rv042g_dual_gigabit_wan_vpn_router_firmware rv082_dual_wan_vpn_router_firmware rv320_dual_gigabit_wan_vpn_router_firmware rv325_dual_gigabit_wan_vpn_router_firmware rv016_multi-wan_vpn_router rv042_dual_wan_vpn_router rv042g_dual_gigabit_wan_vpn_router +3 more products- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1345
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an authenticated, remote attacker to execute arbitrary code or cause an affected device to restart une... Read more
Affected Products : small_business_rv_series_router_firmware rv016_multi-wan_vpn_router_firmware rv042_dual_wan_vpn_router_firmware rv042g_dual_gigabit_wan_vpn_router_firmware rv082_dual_wan_vpn_router_firmware rv320_dual_gigabit_wan_vpn_router_firmware rv325_dual_gigabit_wan_vpn_router_firmware rv016_multi-wan_vpn_router rv042_dual_wan_vpn_router rv042g_dual_gigabit_wan_vpn_router +3 more products- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1344
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an authenticated, remote attacker to execute arbitrary code or cause an affected device to restart une... Read more
Affected Products : small_business_rv_series_router_firmware rv016_multi-wan_vpn_router_firmware rv042_dual_wan_vpn_router_firmware rv042g_dual_gigabit_wan_vpn_router_firmware rv082_dual_wan_vpn_router_firmware rv320_dual_gigabit_wan_vpn_router_firmware rv325_dual_gigabit_wan_vpn_router_firmware rv016_multi-wan_vpn_router rv042_dual_wan_vpn_router rv042g_dual_gigabit_wan_vpn_router +3 more products- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024