- EPSS 94.36%
- Veröffentlicht 10.12.2021 10:15:09
- Zuletzt bearbeitet 08.08.2025 18:52:00
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...
CVE-2019-1877
- EPSS 1.28%
- Veröffentlicht 05.11.2019 20:15:11
- Zuletzt bearbeitet 21.11.2024 04:37:35
A vulnerability in the HTTP API of Cisco Enterprise Chat and Email could allow an unauthenticated, remote attacker to download files attached through chat sessions. The vulnerability is due to insufficient authentication mechanisms on the file downlo...
CVE-2019-1870
- EPSS 0.12%
- Veröffentlicht 05.06.2019 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:37:34
A vulnerability in the web-based management interface of Cisco Enterprise Chat and Email (ECE) Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface ...
CVE-2019-1702
- EPSS 0.12%
- Veröffentlicht 11.03.2019 21:29:01
- Zuletzt bearbeitet 21.11.2024 04:37:08
Multiple vulnerabilities in the web-based management interface of Cisco Enterprise Chat and Email could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of t...