Vulnerabilities > Cisco > Hyperflex Hx240C M5 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-09-18 CVE-2019-1975 Improper Restriction of Rendered UI Layers or Frames vulnerability in Cisco products
A vulnerability in the web-based interface of Cisco HyperFlex Software could allow an unauthenticated, remote attacker to execute a cross-frame scripting (XFS) attack on an affected device.
network
low complexity
cisco CWE-1021
6.1
2019-09-18 CVE-2019-12620 Insufficient Verification of Data Authenticity vulnerability in Cisco products
A vulnerability in the statistics collection service of Cisco HyperFlex Software could allow an unauthenticated, remote attacker to inject arbitrary values on an affected device.
network
low complexity
cisco CWE-345
5.3