- EPSS 94.36%
- Published 10.12.2021 10:15:09
- Last modified 08.08.2025 18:52:00
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...
CVE-2019-1877
- EPSS 1.28%
- Published 05.11.2019 20:15:11
- Last modified 21.11.2024 04:37:35
A vulnerability in the HTTP API of Cisco Enterprise Chat and Email could allow an unauthenticated, remote attacker to download files attached through chat sessions. The vulnerability is due to insufficient authentication mechanisms on the file downlo...
CVE-2019-1870
- EPSS 0.12%
- Published 05.06.2019 17:29:00
- Last modified 21.11.2024 04:37:34
A vulnerability in the web-based management interface of Cisco Enterprise Chat and Email (ECE) Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface ...
CVE-2019-1702
- EPSS 0.12%
- Published 11.03.2019 21:29:01
- Last modified 21.11.2024 04:37:08
Multiple vulnerabilities in the web-based management interface of Cisco Enterprise Chat and Email could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of t...