CVE-2024-20326
- EPSS 0.43%
- Published 16.05.2024 14:15:08
- Last modified 25.07.2025 14:39:47
A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could allow an authenticated, low-privileged, local attacker to read and write arbitrary files as root on the underlying operating system. This vulnerabilit...
CVE-2024-20389
- EPSS 0.14%
- Published 16.05.2024 14:15:08
- Last modified 30.07.2025 19:17:36
A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could allow an authenticated, low-privileged, local attacker to read and write arbitrary files as root on the underlying operating system. This vulnerabilit...
CVE-2024-20383
- EPSS 0.13%
- Published 15.05.2024 18:15:09
- Last modified 08.08.2025 13:15:28
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface. This vulnerability is du...
CVE-2021-1572
- EPSS 0.11%
- Published 04.08.2021 18:15:08
- Last modified 21.11.2024 05:44:39
A vulnerability in ConfD could allow an authenticated, local attacker to execute arbitrary commands at the level of the account under which ConfD is running, which is commonly root. To exploit this vulnerability, an attacker must have a valid account...