Vulnerabilities > Cisco > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-01-20 CVE-2021-1140 OS Command Injection vulnerability in Cisco Smart Software Manager Satellite 5.1.0
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system.
network
low complexity
cisco CWE-78
critical
9.8
2021-01-20 CVE-2021-1138 OS Command Injection vulnerability in Cisco Smart Software Manager Satellite 5.1.0
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system.
network
low complexity
cisco CWE-78
critical
9.8
2021-01-20 CVE-2021-1301 Improper Input Validation vulnerability in Cisco products
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device.
network
low complexity
cisco CWE-20
critical
9.8
2021-01-20 CVE-2021-1300 Unspecified vulnerability in Cisco products
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device.
network
low complexity
cisco
critical
9.8
2021-01-07 CVE-2020-26085 OS Command Injection vulnerability in Cisco Jabber
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) with elevated privileges or gain access to sensitive information.
network
low complexity
cisco CWE-78
critical
9.9
2020-12-11 CVE-2020-27134 Information Exposure vulnerability in Cisco Jabber and Jabber for Mobile Platforms
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) with elevated privileges or gain access to sensitive information.
network
low complexity
cisco CWE-200
critical
9.9
2020-12-11 CVE-2020-27133 Improper Privilege Management vulnerability in Cisco Jabber and Jabber for Mobile Platforms
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) with elevated privileges or gain access to sensitive information.
network
low complexity
cisco CWE-269
critical
9.9
2020-12-11 CVE-2020-27132 Improper Privilege Management vulnerability in Cisco Jabber and Jabber for Mobile Platforms
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) with elevated privileges or gain access to sensitive information.
network
low complexity
cisco CWE-269
critical
9.9
2020-12-11 CVE-2020-27127 Improper Privilege Management vulnerability in Cisco Jabber and Jabber for Mobile Platforms
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) with elevated privileges or gain access to sensitive information.
network
low complexity
cisco CWE-269
critical
9.9
2020-11-18 CVE-2020-3586 OS Command Injection vulnerability in Cisco DNA Spaces: Connector
A vulnerability in the web-based management interface of Cisco DNA Spaces Connector could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device.
network
low complexity
cisco CWE-78
critical
9.8