Latest CVE Feed
-
6.5
MEDIUMCVE-2018-0323
A vulnerability in the web management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to conduct a path traversal attack on a targeted system. The vulnerability is due to insufficient validat... Read more
- Published: May. 17, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2018-0322
A vulnerability in the web management interface of Cisco Prime Collaboration Provisioning (PCP) could allow an authenticated, remote attacker to modify sensitive data that is associated with arbitrary accounts on an affected device. The vulnerability is d... Read more
- Published: Jun. 07, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-0321
A vulnerability in Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to access the Java Remote Method Invocation (RMI) system. The vulnerability is due to an open port in the Network Interface and Configuration E... Read more
Affected Products : prime_collaboration_provisioning prime_collaboration prime_collaboration_assurance- Published: Jun. 07, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-0320
A vulnerability in the web framework code of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation on user-supplied input in S... Read more
- Published: Jun. 07, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-0319
A vulnerability in the password recovery function of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of a p... Read more
- Published: Jun. 07, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-0318
A vulnerability in the password reset function of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of a pass... Read more
- Published: Jun. 07, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2018-0317
A vulnerability in the web interface of Cisco Prime Collaboration Provisioning (PCP) could allow an authenticated, remote attacker to escalate their privileges. The vulnerability is due to insufficient web portal access control checks. An attacker could e... Read more
- Published: Jun. 07, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-0316
A vulnerability in the Session Initiation Protocol (SIP) call-handling functionality of Cisco IP Phone 6800, 7800, and 8800 Series Phones with Multiplatform Firmware could allow an unauthenticated, remote attacker to cause an affected phone to reload unex... Read more
Affected Products : ip_phone_firmware ip_phone_7861 ip_phone_8851 ip_phone_6841 ip_phone_6851 ip_phone_7811 ip_phone_7821 ip_phone_7841 ip_phone_8811 ip_phone_8841 +3 more products- Published: Jun. 07, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-0315
A vulnerability in the authentication, authorization, and accounting (AAA) security services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device or cause an affected device to reload, re... Read more
- Published: Jun. 07, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-0314
A vulnerability in the Cisco Fabric Services (CFS) component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability exists because the affected sof... Read more
- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2018-0313
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to send a malicious packet to the management interface on an affected system and execute a command-injection exploit. The vulnerability is due to i... Read more
Affected Products : nx-os nexus_7000 nx-os nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_3048 +63 more products- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-0312
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) condition on an affected device. The vulner... Read more
- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-0311
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability exists because the... Read more
Affected Products : nx-os firepower_extensible_operating_system nexus_7000 nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_3048 +74 more products- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-0310
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to obtain sensitive information from memory or cause a denial of service (DoS) condition on the affected... Read more
Affected Products : nx-os firepower_extensible_operating_system nexus_7000 nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_3048 +74 more products- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
7.7
HIGHCVE-2018-0309
A vulnerability in the implementation of a specific CLI command and the associated Simple Network Management Protocol (SNMP) MIB for Cisco NX-OS (in standalone NX-OS mode) on Cisco Nexus 3000 and 9000 Series Switches could allow an authenticated, remote a... Read more
Affected Products : nx-os nx-os nexus_3048 nexus_3016 nexus_3064 nexus_3064-t nexus_31108pc-v nexus_31108tc-v nexus_31128pq nexus_3132q +31 more products- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-0308
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) condition. The vulnerability exists because... Read more
- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-0307
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an affected device. The vulnerability is due to insufficient input validation of command arguments. An attacker could ... Read more
Affected Products : nx-os nexus_7000 nx-os nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_3048 +56 more products- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-0306
A vulnerability in the CLI parser of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an affected device. The vulnerability is due to insufficient input validation of command arguments. An attacker... Read more
Affected Products : nx-os nexus_7000 nx-os nexus_5000 nexus_1000v nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up +80 more products- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2018-0305
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The vulnerability exists because th... Read more
- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-0304
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to read sensitive memory content, create a denial of service (DoS) condition, or execute arbitrary code ... Read more
- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024