Vulnerabilities > Cisco > Smart Software Manager ON Prem > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-05-18 CVE-2023-20110 SQL Injection vulnerability in Cisco Smart Software Manager On-Prem
A vulnerability in the web-based management interface of Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system.
network
low complexity
cisco CWE-89
6.5
6.5
2022-07-06 CVE-2022-20808 Resource Exhaustion vulnerability in Cisco Smart Software Manager On-Prem 8202004/8202108
A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-400
6.5
6.5
2021-01-20 CVE-2021-1218 Open Redirect vulnerability in Cisco Smart Software Manager On-Prem 5.0
A vulnerability in the web management interface of Cisco Smart Software Manager satellite could allow an authenticated, remote attacker to redirect a user to an undesired web page.
network
low complexity
cisco CWE-601
5.4
5.4
2020-06-18 CVE-2020-3245 Missing Authorization vulnerability in Cisco Smart Software Manager On-Prem
A vulnerability in the web application of Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an unauthenticated, remote attacker to create arbitrary user accounts.
network
low complexity
cisco CWE-862
5.3
5.3