Latest CVE Feed
-
4.8
MEDIUMCVE-2021-1152
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. T... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-1151
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. T... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1150
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. The vulnera... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1149
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. The vulnera... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1148
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. The vulnera... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1147
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. The vulnera... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-1146
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. The vulnera... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-1145
A vulnerability in the Secure FTP (SFTP) of Cisco StarOS for Cisco ASR 5000 Series Routers could allow an authenticated, remote attacker to read arbitrary files on an affected device. To exploit this vulnerability, the attacker would need to have valid cr... Read more
- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-1144
A vulnerability in Cisco Connected Mobile Experiences (CMX) could allow a remote, authenticated attacker without administrative privileges to alter the password of any user on an affected system. The vulnerability is due to incorrect handling of authoriza... Read more
Affected Products : connected_mobile_experiences- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2021-1143
A vulnerability in Cisco Connected Mobile Experiences (CMX) API authorizations could allow an authenticated, remote attacker to enumerate what users exist on the system. The vulnerability is due to a lack of authorization checks for certain API GET reques... Read more
Affected Products : connected_mobile_experiences- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-1142
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the De... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-1141
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the De... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-1140
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the De... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-1139
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the De... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-1138
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the De... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-1137
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or allow an authenticated, local attacker to gain escalated privileges on an affected system. For more information about th... Read more
- Published: Apr. 08, 2021
- Modified: Nov. 21, 2024
-
6.7
MEDIUMCVE-2021-1136
Multiple vulnerabilities in Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for the Cisco 8000 Series Routers could allow an authenticated, local attacker to exec... Read more
- Published: Feb. 04, 2021
- Modified: Nov. 21, 2024
-
4.6
MEDIUMCVE-2021-1135
Multiple vulnerabilities in the REST API endpoint of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to view, modify, and delete data without proper authorization. For more information about these vulnerabilities, se... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
8.5
HIGHCVE-2021-1133
Multiple vulnerabilities in the REST API endpoint of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to view, modify, and delete data without proper authorization. For more information about these vulnerabilities, se... Read more
- Published: Jan. 20, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-1131
A vulnerability in the Cisco Discovery Protocol implementation for Cisco Video Surveillance 8000 Series IP Cameras could allow an unauthenticated, adjacent attacker to cause an affected IP camera to reload. The vulnerability is due to missing checks when ... Read more
Affected Products : video_surveillance_8400_ip_camera_firmware video_surveillance_8030_ip_camera_firmware video_surveillance_8020_ip_camera_firmware video_surveillance_8000p_ip_camera_firmware video_surveillance_8930_speed_dome_ip_camera_firmware video_surveillance_8630_ip_camera_firmware video_surveillance_8070_ip_camera_firmware video_surveillance_8620_ip_camera_firmware video_surveillance_8400_ip_camera video_surveillance_8030_ip_camera +6 more products- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024