Latest CVE Feed
-
9.0
HIGHCVE-2021-1146
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. The vulnera... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-1145
A vulnerability in the Secure FTP (SFTP) of Cisco StarOS for Cisco ASR 5000 Series Routers could allow an authenticated, remote attacker to read arbitrary files on an affected device. To exploit this vulnerability, the attacker would need to have valid cr... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-1144
A vulnerability in Cisco Connected Mobile Experiences (CMX) could allow a remote, authenticated attacker without administrative privileges to alter the password of any user on an affected system. The vulnerability is due to incorrect handling of authoriza... Read more
Affected Products : connected_mobile_experiences- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2021-1143
A vulnerability in Cisco Connected Mobile Experiences (CMX) API authorizations could allow an authenticated, remote attacker to enumerate what users exist on the system. The vulnerability is due to a lack of authorization checks for certain API GET reques... Read more
Affected Products : connected_mobile_experiences- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-1142
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the De... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-1141
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the De... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-1140
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the De... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-1139
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the De... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-1138
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the De... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-1137
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or allow an authenticated, local attacker to gain escalated privileges on an affected system. For more information about th... Read more
- Published: Apr. 08, 2021
- Modified: Nov. 21, 2024
-
6.7
MEDIUMCVE-2021-1136
Multiple vulnerabilities in Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for the Cisco 8000 Series Routers could allow an authenticated, local attacker to exec... Read more
- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024
-
4.6
MEDIUMCVE-2021-1135
Multiple vulnerabilities in the REST API endpoint of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to view, modify, and delete data without proper authorization. For more information about these vulnerabilities, se... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
8.5
HIGHCVE-2021-1133
Multiple vulnerabilities in the REST API endpoint of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to view, modify, and delete data without proper authorization. For more information about these vulnerabilities, se... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-1131
A vulnerability in the Cisco Discovery Protocol implementation for Cisco Video Surveillance 8000 Series IP Cameras could allow an unauthenticated, adjacent attacker to cause an affected IP camera to reload. The vulnerability is due to missing checks when ... Read more
Affected Products : video_surveillance_8400_ip_camera_firmware video_surveillance_8030_ip_camera_firmware video_surveillance_8020_ip_camera_firmware video_surveillance_8000p_ip_camera_firmware video_surveillance_8930_speed_dome_ip_camera_firmware video_surveillance_8630_ip_camera_firmware video_surveillance_8070_ip_camera_firmware video_surveillance_8620_ip_camera_firmware video_surveillance_8400_ip_camera video_surveillance_8030_ip_camera +6 more products- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-1129
A vulnerability in the authentication for the general purpose APIs implementation of Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote att... Read more
Affected Products : web_security_appliance email_security_appliance content_security_management_appliance- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-1128
A vulnerability in the CLI parser of Cisco IOS XR Software could allow an authenticated, local attacker to view more information than their privileges allow. The vulnerability is due to insufficient application of restrictions during the execution of a sp... Read more
Affected Products : ios_xr- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024
-
5.4
MEDIUMCVE-2021-1127
A vulnerability in the web-based management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface... Read more
Affected Products : enterprise_nfv_infrastructure_software- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
4.9
MEDIUMCVE-2021-1125
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to corrupt program data.... Read more
Affected Products : linux_kernel windows dgx-1_p100 dgx-1_v100 dgx-2 dgx_station_a100 geforce_gt_605 geforce_gt_610 geforce_gt_620 geforce_gt_625 +99 more products- Published: Nov. 20, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-1123
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can deadlock, which may lead to denial of service.... Read more
Affected Products : virtual_gpu- Published: Oct. 29, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-1122
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can dereference a NULL pointer, which may lead to denial of service.... Read more
Affected Products : virtual_gpu- Published: Oct. 29, 2021
- Modified: Nov. 21, 2024