Vulnerabilities > Cisco > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-05 | CVE-2019-12635 | Improper Authorization vulnerability in Cisco Content Security Management Appliance A vulnerability in the authorization module of Cisco Content Security Management Appliance (SMA) Software could allow an authenticated, remote attacker to gain out-of-scope access to email. | 4.0 |
| 2019-09-05 | CVE-2019-12633 | Improper Input Validation vulnerability in Cisco Unified Contact Center Express A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. | 5.0 |
| 2019-09-05 | CVE-2019-12632 | Improper Input Validation vulnerability in Cisco Finesse 11.6(1)/12.0(1)/12.5(1) A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on an affected system. | 5.0 |
| 2019-08-30 | CVE-2019-1977 | State Issues vulnerability in Cisco Nx-Os A vulnerability within the Endpoint Learning feature of Cisco Nexus 9000 Series Switches running in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an endpoint device in certain circumstances. | 4.3 |
| 2019-08-30 | CVE-2019-1969 | Improper Input Validation vulnerability in Cisco Nx-Os A vulnerability in the implementation of the Simple Network Management Protocol (SNMP) Access Control List (ACL) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to perform SNMP polling of an affected device, even if it is configured to deny SNMP traffic. | 5.0 |
| 2019-08-30 | CVE-2019-1968 | Improper Encoding or Escaping of Output vulnerability in Cisco Nx-Os A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an NX-API system process to unexpectedly restart. | 5.0 |
| 2019-08-28 | CVE-2019-1965 | Missing Release of Resource after Effective Lifetime vulnerability in Cisco Nx-Os A vulnerability in the Virtual Shell (VSH) session management for Cisco NX-OS Software could allow an authenticated, remote attacker to cause a VSH process to fail to delete upon termination. | 4.0 |
| 2019-08-28 | CVE-2019-1963 | Improper Input Validation vulnerability in Cisco Nx-Os A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, remote attacker to cause the SNMP application on an affected device to restart unexpectedly. | 6.8 |
| 2019-08-21 | CVE-2019-1984 | Improper Input Validation vulnerability in Cisco Enterprise Network Function Virtualization Infrastructure Sofware A vulnerability in Cisco Enterprise Network Functions Virtualization Infrastructure Software (NFVIS) could allow an authenticated, remote attacker with administrator privileges to overwrite files on the underlying operating system (OS) of an affected device. | 5.5 |
| 2019-08-21 | CVE-2019-1948 | Improper Certificate Validation vulnerability in Cisco Webex Meetings 11.3/39.5 A vulnerability in Cisco Webex Meetings Mobile (iOS) could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data by using an invalid Secure Sockets Layer (SSL) certificate. | 4.3 |