Vulnerabilities > Cisco
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-16 | CVE-2021-1422 | Reachable Assertion vulnerability in Cisco products A vulnerability in the software cryptography module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker or an unauthenticated attacker in a man-in-the-middle position to cause an unexpected reload of the device that results in a denial of service (DoS) condition. | 7.7 |
| 2021-07-08 | CVE-2021-1359 | Unspecified vulnerability in Cisco Asyncos and web Security Appliance A vulnerability in the configuration management of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to perform command injection and elevate privileges to root. | 8.8 |
| 2021-07-08 | CVE-2021-1562 | Improper Input Validation vulnerability in Cisco Broadworks Application Server A vulnerability in the XSI-Actions interface of Cisco BroadWorks Application Server could allow an authenticated, remote attacker to access sensitive information on an affected system. | 4.3 |
| 2021-07-08 | CVE-2021-1574 | Use of Hard-coded Credentials vulnerability in Cisco Business Process Automation Multiple vulnerabilities in the web-based management interface of Cisco Business Process Automation (BPA) could allow an authenticated, remote attacker to elevate privileges to Administrator. | 8.8 |
| 2021-07-08 | CVE-2021-1575 | Cross-site Scripting vulnerability in Cisco Virtualized Voice Browser 11.6/11.6(1) A vulnerability in the web-based management interface of Cisco Virtualized Voice Browser could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. | 6.1 |
| 2021-07-08 | CVE-2021-1576 | Use of Hard-coded Credentials vulnerability in Cisco Business Process Automation Multiple vulnerabilities in the web-based management interface of Cisco Business Process Automation (BPA) could allow an authenticated, remote attacker to elevate privileges to Administrator. | 8.8 |
| 2021-07-08 | CVE-2021-1585 | Code Injection vulnerability in Cisco Adaptive Security Device Manager A vulnerability in the Cisco Adaptive Security Device Manager (ASDM) Launcher could allow an unauthenticated, remote attacker to execute arbitrary code on a user's operating system. | 8.1 |
| 2021-07-08 | CVE-2021-1595 | Memory Leak vulnerability in Cisco products Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Video Surveillance 7000 Series IP Cameras could allow an unauthenticated, adjacent attacker to cause a memory leak, which could lead to a denial of service (DoS) condition on an affected device. | 6.5 |
| 2021-07-08 | CVE-2021-1596 | Memory Leak vulnerability in Cisco products Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Video Surveillance 7000 Series IP Cameras could allow an unauthenticated, adjacent attacker to cause a memory leak, which could lead to a denial of service (DoS) condition on an affected device. | 6.5 |
| 2021-07-08 | CVE-2021-1597 | Memory Leak vulnerability in Cisco products Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Video Surveillance 7000 Series IP Cameras could allow an unauthenticated, adjacent attacker to cause a memory leak, which could lead to a denial of service (DoS) condition on an affected device. | 6.5 |