Vulnerabilities > Cisco > Cloud Application Policy Infrastructure Controller > 4.2.6n
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-08-25 | CVE-2021-1579 | Improper Privilege Management vulnerability in Cisco products A vulnerability in an API endpoint of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Application Policy Infrastructure Controller (Cloud APIC) could allow an authenticated, remote attacker with Administrator read-only credentials to elevate privileges on an affected system. | 8.8 |
2021-08-25 | CVE-2021-1581 | Unspecified vulnerability in Cisco products Multiple vulnerabilities in the web UI and API endpoints of Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC could allow a remote attacker to perform a command injection or file upload attack on an affected system. | 9.1 |
2021-08-25 | CVE-2021-1582 | Cross-site Scripting vulnerability in Cisco Application Policy Infrastructure Controller A vulnerability in the web UI of Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC could allow an authenticated, remote attacker to perform a stored cross-site scripting attack on an affected system. | 5.4 |