Cisco

Iot Field Network Director

17 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-44487

Warnung Medienbericht Exploit
  • EPSS 94.44%
  • Veröffentlicht 10.10.2023 14:15:10
  • Zuletzt bearbeitet 11.06.2025 17:29:54

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

10

CVE-2020-3531

  • EPSS 4.84%
  • Veröffentlicht 18.11.2020 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:31:15

A vulnerability in the REST API of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to access the back-end database of an affected system. The vulnerability exists because the affected software does not properly ...

7.5

CVE-2020-3392

  • EPSS 1.64%
  • Veröffentlicht 18.11.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 05:30:56

A vulnerability in the API of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to view sensitive information on an affected system. The vulnerability exists because the affected software does not properly authent...

6.1

CVE-2020-26081

  • EPSS 0.15%
  • Veröffentlicht 18.11.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 05:19:11

Multiple vulnerabilities in the web UI of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against users on an affected system. The vulnerabilities are due to insuffi...

4.1

CVE-2020-26080

  • EPSS 0.14%
  • Veröffentlicht 18.11.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 05:19:11

A vulnerability in the user management functionality of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to manage user information for users in different domains on an affected system. The vulnerability is due to ...

7.5

CVE-2020-26076

  • EPSS 0.58%
  • Veröffentlicht 18.11.2020 18:15:11
  • Zuletzt bearbeitet 21.11.2024 05:19:11

A vulnerability in Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to view sensitive database information on an affected device. The vulnerability is due to the absence of authentication for sensitive informatio...

4.9

CVE-2020-26079

  • EPSS 0.17%
  • Veröffentlicht 18.11.2020 18:15:11
  • Zuletzt bearbeitet 21.11.2024 05:19:11

A vulnerability in the web UI of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to obtain hashes of user passwords on an affected device. The vulnerability is due to insufficient protection of user credentials. A...

6.5

CVE-2020-26078

  • EPSS 0.22%
  • Veröffentlicht 18.11.2020 18:15:11
  • Zuletzt bearbeitet 21.11.2024 05:19:11

A vulnerability in the file system of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to overwrite files on an affected system. The vulnerability is due to insufficient file system protections. An attacker could e...

4.3

CVE-2020-26077

  • EPSS 0.14%
  • Veröffentlicht 18.11.2020 18:15:11
  • Zuletzt bearbeitet 21.11.2024 05:19:11

A vulnerability in the access control functionality of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to view lists of users from different domains that are configured on an affected system. The vulnerability is ...

9

CVE-2020-26075

  • EPSS 2.28%
  • Veröffentlicht 18.11.2020 18:15:11
  • Zuletzt bearbeitet 21.11.2024 05:19:10

A vulnerability in the REST API of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to gain access to the back-end database of an affected device. The vulnerability is due to insufficient input validation of REST A...