Vulnerabilities > Cisco > Sf250 08 Firmware

DATE CVE VULNERABILITY TITLE RISK
2019-10-16 CVE-2019-12718 Cross-site Scripting vulnerability in Cisco products
A vulnerability in the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface.
network
low complexity
cisco CWE-79
6.1
2019-10-16 CVE-2019-12636 Cross-Site Request Forgery (CSRF) vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system.
network
low complexity
cisco CWE-352
8.8