Latest CVE Feed
-
8.6
HIGHCVE-2021-1278
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advi... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-1277
Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) could allow an attacker to spoof a trusted host or construct a man-in-the-middle attack to extract sensitive information or alter certain API requests. These vulnerabilities are due to i... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-1276
Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) could allow an attacker to spoof a trusted host or construct a man-in-the-middle attack to extract sensitive information or alter certain API requests. These vulnerabilities are due to i... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-1275
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges or gain una... Read more
- Published: May. 06, 2021
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2021-1274
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advi... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2021-1273
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advi... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-1272
A vulnerability in the session validation feature of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. This vuln... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-1271
A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affecte... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-1270
Multiple vulnerabilities in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to view, modify, and delete data without proper authorization. For more information about these vulner... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-1269
Multiple vulnerabilities in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to view, modify, and delete data without proper authorization. For more information about these vulner... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
7.4
HIGHCVE-2021-1268
A vulnerability in the IPv6 protocol handling of the management interfaces of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause an IPv6 flood on the management interface network of an affected device. The vulnerability exist... Read more
- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2021-1266
A vulnerability in the REST API of Cisco Managed Services Accelerator (MSX) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to the way that the affected software lo... Read more
Affected Products : managed_services_accelerator- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2021-1263
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks against an affected device, which could allow the attacker to take certain actions with root privileges on the device. For more in... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2021-1262
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks against an affected device, which could allow the attacker to take certain actions with root privileges on the device. For more in... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2021-1261
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks against an affected device, which could allow the attacker to take certain actions with root privileges on the device. For more in... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2021-1260
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks against an affected device, which could allow the attacker to take certain actions with root privileges on the device. For more in... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2021-1259
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain write access to sensitive files on an affected system. The vulnerability is d... Read more
Affected Products : sd-wan_vmanage- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-1258
A vulnerability in the upgrade component of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker with low privileges to read arbitrary files on the underlying operating system (OS) of an affected device. The vulnerability i... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
6.0
MEDIUMCVE-2021-1256
A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to overwrite files on the file system of an affected device by using directory traversal techniques. A successful exploit could cause ... Read more
Affected Products : firepower_threat_defense- Published: Apr. 29, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-1255
Multiple vulnerabilities in the REST API endpoint of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to view, modify, and delete data without proper authorization. For more information about these vulnerabilities, se... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024