Latest CVE Feed
-
9.8
CRITICALCVE-2018-0308
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) condition. The vulnerability exists because... Read more
- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-0307
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an affected device. The vulnerability is due to insufficient input validation of command arguments. An attacker could ... Read more
Affected Products : nx-os nexus_7000 nx-os nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_3048 +56 more products- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-0306
A vulnerability in the CLI parser of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an affected device. The vulnerability is due to insufficient input validation of command arguments. An attacker... Read more
Affected Products : nx-os nexus_7000 nx-os nexus_5000 nexus_1000v nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up +80 more products- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2018-0305
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The vulnerability exists because th... Read more
- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-0304
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to read sensitive memory content, create a denial of service (DoS) condition, or execute arbitrary code ... Read more
- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2018-0303
A vulnerability in the Cisco Discovery Protocol component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code as root or cause a denial of service (DoS) condition on the affected devi... Read more
Affected Products : nx-os firepower_extensible_operating_system nexus_7000 nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_3048 +74 more products- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-0302
A vulnerability in the CLI parser of Cisco FXOS Software and Cisco UCS Fabric Interconnect Software could allow an authenticated, local attacker to cause a buffer overflow on an affected device. The vulnerability is due to incorrect input validation in th... Read more
Affected Products : nx-os firepower_extensible_operating_system ucs_6248up ucs_6296up ucs_6324 ucs_6332 firepower_4110 firepower_4120 firepower_4140 firepower_4150 +3 more products- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-0301
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to craft a packet to the management interface on an affected system, causing a buffer overflow. The vulnerability is due to incorrect input valid... Read more
Affected Products : nx-os mds_9000 nexus_7000 nx-os nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up +57 more products- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2018-0300
A vulnerability in the process of uploading new application images to Cisco FXOS on the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Firepower 9300 Security Appliance could allow an authenticated, remote attacker using path traversal te... Read more
Affected Products : fxos firepower_4110 firepower_4120 firepower_4140 firepower_4150 firepower_9300_security_appliance- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2018-0299
A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco NX-OS on the Cisco Nexus 4000 Series Switch could allow an authenticated, remote attacker to cause the device to unexpectedly reload, resulting in a denial of service (DoS) ... Read more
- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-0298
A vulnerability in the web UI of Cisco FXOS and Cisco UCS Fabric Interconnect Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected system. The vulnerability is due to incorrect input validation in the web UI. ... Read more
Affected Products : nx-os firepower_extensible_operating_system ucs_6248up ucs_6296up ucs_6324 ucs_6332 firepower_4110 firepower_4120 firepower_4140 firepower_4150 +3 more products- Published: Jun. 21, 2018
- Modified: Nov. 21, 2024
-
5.8
MEDIUMCVE-2018-0297
A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote attacker to bypass a configured Secure Sockets Layer (SSL) Access Control (AC) policy to block SSL traffic. The vulnerability is due ... Read more
- Published: May. 17, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-0295
A vulnerability in the Border Gateway Protocol (BGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the device unexpectedly reloading. The vulnerability is due to ... Read more
Affected Products : nx-os nexus_7000 nx-os nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_3048 +56 more products- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2018-0294
A vulnerability in the write-erase feature of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to configure an unauthorized administrator account for an affected device. The vulnerability exists because the affecte... Read more
Affected Products : nx-os firepower_extensible_operating_system fxos nexus_5000 nexus_1000v nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up +65 more products- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2018-0293
A vulnerability in role-based access control (RBAC) for Cisco NX-OS Software could allow an authenticated, remote attacker to execute CLI commands that should be restricted for a nonadministrative user. The attacker would have to possess valid user creden... Read more
Affected Products : nx-os nexus_7000 nx-os nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_3048 +56 more products- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2018-0292
A vulnerability in the Internet Group Management Protocol (IGMP) Snooping feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code and gain full control of an affected system. The attacker could also caus... Read more
Affected Products : nx-os nexus_7000 nx-os nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_3048 +63 more products- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2018-0291
A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco NX-OS Software could allow an authenticated, remote attacker to cause the SNMP application on an affected device to restart unexpectedly. The vulnerability is... Read more
Affected Products : nx-os nexus_7000 nx-os nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_3048 +62 more products- Published: Jun. 20, 2018
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2018-0290
A vulnerability in the TCP stack of Cisco SocialMiner could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition in the notification system. The vulnerability is due to faulty handling of new TCP connections to the affect... Read more
Affected Products : socialminer- Published: May. 17, 2018
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2018-0289
A vulnerability in the logs component of Cisco Identity Services Engine could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of requests stored in logs in the application ... Read more
- Published: May. 17, 2018
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2018-0288
A vulnerability in Cisco WebEx Recording Format (WRF) Player could allow an unauthenticated, remote attacker to access sensitive data about the application. An attacker could exploit this vulnerability to gain information to conduct additional reconnaissa... Read more
- Published: May. 02, 2018
- Modified: Nov. 21, 2024