Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2023-01-20	CVE-2023-20018	Incorrect Authorization vulnerability in Cisco products A vulnerability in the web-based management interface of Cisco IP Phone 7800 and 8800 Series Phones could allow an unauthenticated, remote attacker to bypass authentication on an affected device. This vulnerability is due to insufficient validation of user-supplied input. network low complexity cisco CWE-863	6.5
2021-05-11	CVE-2020-26139	Improper Authentication vulnerability in multiple products An issue was discovered in the kernel in NetBSD 7.1. high complexity netbsd debian arista cisco intel CWE-287	5.3
2021-05-11	CVE-2020-26140	Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. low complexity alfa siemens arista cisco intel CWE-327	6.5
2019-03-22	CVE-2019-1765	Path Traversal vulnerability in Cisco products A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 8800 Series could allow an authenticated, remote attacker to write arbitrary files to the filesystem. network low complexity cisco CWE-22	6.5