Vulnerabilities > Cisco
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-18 | CVE-2018-0394 | Improper Input Validation vulnerability in Cisco Cloud Services Platform 2100 2.2(4) A vulnerability in the web upload function of Cisco Cloud Services Platform 2100 could allow an authenticated, remote attacker to obtain restricted shell access on an affected system. | 6.5 |
| 2018-07-18 | CVE-2018-0393 | Unspecified vulnerability in Cisco products A Read-Only User Effect Change vulnerability in the Policy Builder interface of Cisco Policy Suite could allow an authenticated, remote attacker to make policy changes in the Policy Builder interface. | 4.0 |
| 2018-07-18 | CVE-2018-0392 | Incorrect Permission Assignment for Critical Resource vulnerability in Cisco products A vulnerability in the CLI of Cisco Policy Suite could allow an authenticated, local attacker to access files owned by another user. | 2.1 |
| 2018-07-18 | CVE-2018-0390 | Cross-site Scripting vulnerability in Cisco Webex Meetings 2.0 A vulnerability in the web framework of Cisco Webex could allow an unauthenticated, remote attacker to conduct a Document Object Model-based (DOM-based) cross-site scripting (XSS) attack against the user of the web interface of an affected system. | 4.3 |
| 2018-07-18 | CVE-2018-0387 | Improper Input Validation vulnerability in Cisco Webex Teams A vulnerability in Cisco Webex Teams (for Windows and macOS) could allow an unauthenticated, remote attacker to execute arbitrary code on the user's device, possibly with elevated privileges. | 9.3 |
| 2018-07-18 | CVE-2018-0380 | Unspecified vulnerability in Cisco Webex Meetings Online Multiple vulnerabilities exist in the Cisco Webex Network Recording Player for Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. network cisco | 4.3 |
| 2018-07-18 | CVE-2018-0379 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Cisco products Multiple vulnerabilities exist in the Cisco Webex Network Recording Player for Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. | 6.8 |
| 2018-07-18 | CVE-2018-0377 | Missing Authentication for Critical Function vulnerability in Cisco Mobility Services Engine and Policy Suite A vulnerability in the Open Systems Gateway initiative (OSGi) interface of Cisco Policy Suite before 18.1.0 could allow an unauthenticated, remote attacker to directly connect to the OSGi interface. | 7.5 |
| 2018-07-18 | CVE-2018-0376 | Missing Authentication for Critical Function vulnerability in Cisco Mobility Services Engine and Policy Suite A vulnerability in the Policy Builder interface of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to access the Policy Builder interface. | 7.5 |
| 2018-07-18 | CVE-2018-0375 | Use of Hard-coded Credentials vulnerability in Cisco Mobility Services Engine and Policy Suite A vulnerability in the Cluster Manager of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to log in to an affected system using the root account, which has default, static user credentials. | 10.0 |