Vulnerabilities > Cisco > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-24 | CVE-2021-1231 | Origin Validation Error vulnerability in Cisco Nx-Os A vulnerability in the Link Layer Discovery Protocol (LLDP) for Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, adjacent attacker to disable switching on a small form-factor pluggable (SFP) interface. | 4.7 |
| 2021-02-24 | CVE-2021-1229 | Unspecified vulnerability in Cisco Nx-Os 15.1(2.31)/5.2(1)Sv5(1.3A)/8.4(3.53) A vulnerability in ICMP Version 6 (ICMPv6) processing in Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a slow system memory leak, which over time could lead to a denial of service (DoS) condition. | 5.3 |
| 2021-02-24 | CVE-2021-1228 | Unspecified vulnerability in Cisco Nx-Os A vulnerability in the fabric infrastructure VLAN connection establishment of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, adjacent attacker to bypass security validations and connect an unauthorized server to the infrastructure VLAN. low complexity cisco | 6.5 |
| 2021-02-17 | CVE-2021-1416 | Unspecified vulnerability in Cisco Identity Services Engine Multiple vulnerabilities in the Admin portal of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to obtain sensitive information. | 4.3 |
| 2021-02-17 | CVE-2021-1412 | Unspecified vulnerability in Cisco Identity Services Engine Multiple vulnerabilities in the Admin portal of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to obtain sensitive information. | 6.5 |
| 2021-02-17 | CVE-2021-1372 | Unspecified vulnerability in Cisco Webex Meetings Server A vulnerability in Cisco Webex Meetings Desktop App and Webex Productivity Tools for Windows could allow an authenticated, local attacker to gain access to sensitive information on an affected system. | 5.5 |
| 2021-02-17 | CVE-2021-1351 | Cross-site Scripting vulnerability in Cisco Webex Meetings 41.1.0 A vulnerability in the web-based interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface of the affected service. | 6.1 |
| 2021-02-04 | CVE-2021-1389 | Unspecified vulnerability in Cisco IOS XR A vulnerability in the IPv6 traffic processing of Cisco IOS XR Software and Cisco NX-OS Software for certain Cisco devices could allow an unauthenticated, remote attacker to bypass an IPv6 access control list (ACL) that is configured for an interface of an affected device. | 6.5 |
| 2021-02-04 | CVE-2021-1268 | Unspecified vulnerability in Cisco IOS XR A vulnerability in the IPv6 protocol handling of the management interfaces of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause an IPv6 flood on the management interface network of an affected device. low complexity cisco | 6.5 |
| 2021-02-04 | CVE-2021-1266 | Unspecified vulnerability in Cisco Managed Services Accelerator 3.7.0 A vulnerability in the REST API of Cisco Managed Services Accelerator (MSX) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. | 6.5 |