Vulnerabilities > Cisco > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-06 | CVE-2021-34706 | XXE vulnerability in Cisco Identity Services Engine A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to access sensitive information or conduct a server-side request forgery (SSRF) attack through an affected device. | 5.4 |
| 2021-10-06 | CVE-2021-34711 | Path Traversal vulnerability in Cisco products A vulnerability in the debug shell of Cisco IP Phone software could allow an authenticated, local attacker to read any file on the device file system. | 5.5 |
| 2021-10-06 | CVE-2021-34742 | Cross-site Scripting vulnerability in Cisco Vision Dynamic Signage Director A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface on an affected device. | 6.1 |
| 2021-10-06 | CVE-2021-34744 | Use of Hard-coded Credentials vulnerability in Cisco products Multiple vulnerabilities in Cisco Business 220 Series Smart Switches firmware could allow an attacker with Administrator privileges to access sensitive login credentials or reconfigure the passwords on the user account. | 4.9 |
| 2021-10-06 | CVE-2021-34757 | Use of Hard-coded Credentials vulnerability in Cisco products Multiple vulnerabilities in Cisco Business 220 Series Smart Switches firmware could allow an attacker with Administrator privileges to access sensitive login credentials or reconfigure the passwords on the user account. | 5.5 |
| 2021-10-06 | CVE-2021-34772 | Open Redirect vulnerability in Cisco Orbital A vulnerability in the web-based management interface of Cisco Orbital could allow an unauthenticated, remote attacker to redirect users to a malicious webpage. | 6.1 |
| 2021-10-06 | CVE-2021-34775 | Classic Buffer Overflow vulnerability in Cisco products Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business 220 Series Smart Switches. | 4.3 |
| 2021-10-06 | CVE-2021-34776 | Classic Buffer Overflow vulnerability in Cisco products Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business 220 Series Smart Switches. | 4.3 |
| 2021-10-06 | CVE-2021-34777 | Classic Buffer Overflow vulnerability in Cisco products Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business 220 Series Smart Switches. | 4.3 |
| 2021-10-06 | CVE-2021-34778 | Classic Buffer Overflow vulnerability in Cisco products Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business 220 Series Smart Switches. | 4.3 |