Cisco

Iot Field Network Director

17 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-44487

Warning Media report Exploit
  • EPSS 94.44%
  • Published 10.10.2023 14:15:10
  • Last modified 11.06.2025 17:29:54

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

10

CVE-2020-3531

  • EPSS 4.84%
  • Published 18.11.2020 19:15:12
  • Last modified 21.11.2024 05:31:15

A vulnerability in the REST API of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to access the back-end database of an affected system. The vulnerability exists because the affected software does not properly ...

7.5

CVE-2020-3392

  • EPSS 1.64%
  • Published 18.11.2020 18:15:12
  • Last modified 21.11.2024 05:30:56

A vulnerability in the API of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to view sensitive information on an affected system. The vulnerability exists because the affected software does not properly authent...

6.1

CVE-2020-26081

  • EPSS 0.15%
  • Published 18.11.2020 18:15:12
  • Last modified 21.11.2024 05:19:11

Multiple vulnerabilities in the web UI of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against users on an affected system. The vulnerabilities are due to insuffi...

4.1

CVE-2020-26080

  • EPSS 0.14%
  • Published 18.11.2020 18:15:12
  • Last modified 21.11.2024 05:19:11

A vulnerability in the user management functionality of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to manage user information for users in different domains on an affected system. The vulnerability is due to ...

7.5

CVE-2020-26076

  • EPSS 0.58%
  • Published 18.11.2020 18:15:11
  • Last modified 21.11.2024 05:19:11

A vulnerability in Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to view sensitive database information on an affected device. The vulnerability is due to the absence of authentication for sensitive informatio...

4.9

CVE-2020-26079

  • EPSS 0.17%
  • Published 18.11.2020 18:15:11
  • Last modified 21.11.2024 05:19:11

A vulnerability in the web UI of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to obtain hashes of user passwords on an affected device. The vulnerability is due to insufficient protection of user credentials. A...

6.5

CVE-2020-26078

  • EPSS 0.22%
  • Published 18.11.2020 18:15:11
  • Last modified 21.11.2024 05:19:11

A vulnerability in the file system of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to overwrite files on an affected system. The vulnerability is due to insufficient file system protections. An attacker could e...

4.3

CVE-2020-26077

  • EPSS 0.14%
  • Published 18.11.2020 18:15:11
  • Last modified 21.11.2024 05:19:11

A vulnerability in the access control functionality of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to view lists of users from different domains that are configured on an affected system. The vulnerability is ...

9

CVE-2020-26075

  • EPSS 2.28%
  • Published 18.11.2020 18:15:11
  • Last modified 21.11.2024 05:19:10

A vulnerability in the REST API of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to gain access to the back-end database of an affected device. The vulnerability is due to insufficient input validation of REST A...