Cisco Appliance Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

9.7.1-0667
8.07
6.5.07
7.76
8.16

Przeciwdziałanie

Official Fix167
Temporary Fix0
Workaround2
Unavailable2
Not Defined28

Wykorzystywanie

High4
Functional0
Proof-of-Concept5
Unproven20
Not Defined170

Wektor dostępu

Not Defined0
Physical0
Local18
Adjacent3
Network178

Uwierzytelnianie

Not Defined0
High11
Low34
None154

Interakcja z użytkownikiem

Not Defined0
Required24
None175

C3BM Index

Ostatni rok

CVSSv3 Base

≤10
≤20
≤30
≤43
≤520
≤656
≤753
≤856
≤97
≤104

CVSSv3 Temp

≤10
≤20
≤31
≤45
≤527
≤658
≤752
≤847
≤97
≤102

VulDB

≤10
≤20
≤31
≤410
≤523
≤656
≤718
≤880
≤97
≤104

NVD

≤10
≤20
≤30
≤41
≤56
≤640
≤721
≤842
≤97
≤102

CNA

≤10
≤20
≤30
≤40
≤54
≤624
≤78
≤86
≤97
≤101

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤63
≤73
≤81
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k0
<2k0
<5k2
<10k26
<25k106
<50k59
<100k6
≥100k0

Wykorzystaj dzisiaj

<1k109
<2k24
<5k30
<10k15
<25k18
<50k3
<100k0
≥100k0

Wykorzystaj wielkość rynku

Ostatni rok

🔴 CTI Zajęcia

Affected Versions (103): 1.0, 1.0(2), 1.1, 2, 2.0, 2.0(1.68), 2.0.1, 2.0.2, 2.0.3, 2.1, 3.1(1k)A, 3.3.1-09, 6.5, 7.0, 7.1, 7.2, 7.3, 7.4, 7.5, 7.5.1-gpl-022, 7.5.2-201, 7.5.2-HP2-303, 7.5.7.7, 7.6, 7.6.3, 7.6.3-025, 7.7, 7.7.0-608, 7.7.5-835, 7.8, 7.8.0-, 7.9.1-102, 8, 8.0, 8.0.0-404, 8.0.1-023, 8.0.6-078, 8.0.6-115, 8.0.7, 8.0.7-142, 8.1, 8.1.1-013, 8.2.0-222, 8.3, 8.3.6-048, 8.5, 8.5.0-, 8.5.0-497, 8.5.0-ER1-198, 8.5.0-ise-147, 8.5.1-021, 8.5.3-051, 8.5.3-055, 8.5.3-069, 8.5.6-073, 8.5.6-074, 8.5.6-106, 8.5.6-113, 8.5.7-042, 8.6, 8.7, 8.8, 8.8.0-, 9.0, 9.0.0-461, 9.0.0-485, 9.0.1-162, 9.1, 9.1(2.4), 9.1.0-, 9.1.0-032, 9.1.1-, 9.1.1-036, 9.1.1-074, 9.1.2-01, 9.5.0-125, 9.5.0-201, 9.5.0-235, 9.5.0-444, 9.6, 9.6.0-, 9.6.0-042, 9.6.0-051, 9.7, 9.7.0-125, 9.7.1, 9.7.1-, 9.7.1-066, 9.7.1-HP2-207, 9.7.2, 9.7.2-047, 9.8.5-085, 9.9.9-894, 10.0.0-082, 10.0.0-125, 10.0.0-203, 10.1, 10.1.0-204, 10.5, 10.5.1, 10.5.2, 11, WSA10.0.0-233

Link to Product Website: https://www.cisco.com/

OpublikowanoBaseTempSłaby punkt0dayDzisiajWykPrzCTICVE
2024-01-107.06.9Cisco ThousandEyes Enterprise Agent Virtual Appliance Web-based Management Interface Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20277
2023-11-015.55.4Cisco Firepower Threat Defense Software Snort privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20246
2023-11-015.55.4Cisco Firepower Threat Defense Software FTP Module privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20071
2023-08-167.67.5Cisco Intersight Private Virtual Appliance privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20017
2023-08-167.67.5Cisco Intersight Private Virtual Appliance privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20013
2023-08-164.34.2Cisco Intersight Virtual Appliance Port Forwarding privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20237
2023-08-164.44.3Cisco ThousandEyes Enterprise Agent Virtual Appliance sudo information disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-20217
2023-08-167.87.6Cisco ThousandEyes Enterprise Agent Virtual Appliance CLI privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20224
2023-08-055.55.4Cisco Email Security Appliance Password-protected Zip File nieznana luka$25k-$100k$5k-$25kNot DefinedOfficial Fix0.04CVE-2020-26082
2023-08-025.55.4Cisco Secure Web Appliance Content Encoding Filter privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-20215
2023-06-225.05.0Cisco Secure Email Web-based Management Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20120
2023-06-224.44.4Cisco Secure Email/Web Manager/Secure Web Appliance cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-20028
2023-01-185.45.3Cisco Email Security Appliance URL Filter privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20057
2022-11-095.95.8Cisco Cyber Vision Snort SMB2 Detection Engine Policy denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20922
2022-11-025.45.3Cisco Email Security Appliance HTTP request information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20942
2022-11-027.57.3Cisco Email Security Appliance TLS denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20960
2022-11-025.55.5Cisco ESA sql injection$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20867
2022-10-067.37.0Cisco Secure Web Appliance Scanning Engine privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20952
2022-08-198.88.4Cisco Secure Web Appliance HTTP privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20871
2022-06-169.89.6Cisco Secure Email and Web Manager Web-based Management Interface weak authentication$25k-$100k$5k-$25kNot DefinedOfficial Fix0.02CVE-2022-20798
2022-06-166.05.9Cisco Secure Email and Web Manager Web Management Interface information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20664
2022-04-225.65.5Cisco Umbrella Virtual Appliance Key-based SSH Authentication weak encryption$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20773
2022-04-074.44.4Cisco Web Security Appliance Web-based Management Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20781
2022-04-076.66.4Cisco Web Security Appliance Web-Based Reputation Score Engine privilege escalation$25k-$100k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20784
2022-04-075.35.2Cisco Email Security Appliance Service Port 199 denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20675

174 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 174 results.

więcej wpisów autorstwa Cisco

PoprzedniPrzeglądKolejny

Do you know our Splunk app?

Download it now for free!