Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-24 | CVE-2021-1352 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Cisco IOS XE A vulnerability in the DECnet Phase IV and DECnet/OSI protocol processing of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. | 6.5 |
| 2021-03-24 | CVE-2021-1281 | Unspecified vulnerability in Cisco IOS XE A vulnerability in CLI management in Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the underlying operating system as the root user. | 6.7 |
| 2021-03-24 | CVE-2021-1220 | Unspecified vulnerability in Cisco IOS XE Multiple vulnerabilities in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to cause the web UI software to become unresponsive and consume vty line instances, resulting in a denial of service (DoS) condition. | 4.3 |
| 2021-03-24 | CVE-2020-7853 | Out-of-bounds Read vulnerability in Tobesoft Xplatform An outbound read/write vulnerability exists in XPLATFORM that does not check offset input ranges, allowing out-of-range data to be read. | 7.5 |
| 2021-03-24 | CVE-2020-26283 | Improper Encoding or Escaping of Output vulnerability in Protocol Go-Ipfs go-ipfs is an open-source golang implementation of IPFS which is a global, versioned, peer-to-peer filesystem. | 6.5 |
| 2021-03-24 | CVE-2020-26279 | Path Traversal vulnerability in Protocol Go-Ipfs go-ipfs is an open-source golang implementation of IPFS which is a global, versioned, peer-to-peer filesystem. | 5.5 |
| 2021-03-24 | CVE-2021-1471 | Improper Certificate Validation vulnerability in Cisco Jabber Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. | 5.6 |
| 2021-03-24 | CVE-2021-1469 | Improper Input Validation vulnerability in Cisco Jabber Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. | 7.2 |
| 2021-03-24 | CVE-2021-1460 | Resource Exhaustion vulnerability in Cisco products A vulnerability in the Cisco IOx Application Framework of Cisco 809 Industrial Integrated Services Routers (Industrial ISRs), Cisco 829 Industrial ISRs, Cisco CGR 1000 Compute Module, and Cisco IC3000 Industrial Compute Gateway could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. | 7.5 |
| 2021-03-24 | CVE-2021-1454 | Argument Injection or Modification vulnerability in Cisco IOS XE and IOS XE Sd-Wan Multiple vulnerabilities in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the underlying operating system with root privileges. | 6.7 |