Vulnerabilities > Cisco > Vision Dynamic Signage Director > 6.1

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-06	CVE-2021-34742	Cross-site Scripting vulnerability in Cisco Vision Dynamic Signage Director A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface on an affected device. network low complexity cisco CWE-79	6.1
2020-10-08	CVE-2020-3598	Missing Authentication for Critical Function vulnerability in Cisco Vision Dynamic Signage Director A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to access confidential information or make configuration changes. network low complexity cisco CWE-306	6.5
2020-07-16	CVE-2020-3450	SQL Injection vulnerability in Cisco Vision Dynamic Signage Director A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative credentials to conduct SQL injection attacks on an affected system. network low complexity cisco CWE-89	4.9
2019-07-17	CVE-2019-1917	Improper Authentication vulnerability in Cisco Vision Dynamic Signage Director A vulnerability in the REST API interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to bypass authentication on an affected system. network low complexity cisco CWE-287 critical	10.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.