Cisco

Common Services Platform Collector

19 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2022-20667

  • EPSS 0.22%
  • Published 27.05.2022 14:15:08
  • Last modified 21.11.2024 06:43:16

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector (CSPC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface....

6.1

CVE-2022-20666

  • EPSS 0.22%
  • Published 27.05.2022 14:15:08
  • Last modified 21.11.2024 06:43:16

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector (CSPC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface....

10

CVE-2021-44228

Warning Exploit
  • EPSS 94.36%
  • Published 10.12.2021 10:15:09
  • Last modified 08.08.2025 18:52:00

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...

5.4

CVE-2021-40131

  • EPSS 0.21%
  • Published 19.11.2021 00:15:07
  • Last modified 21.11.2024 06:23:38

A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability ...

4.9

CVE-2021-40130

  • EPSS 0.18%
  • Published 19.11.2021 00:15:07
  • Last modified 21.11.2024 06:23:38

A vulnerability in the web application of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to specify non-log files as sources for syslog reporting. This vulnerability is due to improper restriction of the...

4.9

CVE-2021-40129

  • EPSS 0.25%
  • Published 19.11.2021 00:15:07
  • Last modified 21.11.2024 06:23:38

A vulnerability in the configuration dashboard of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to submit a SQL query through the CSPC configuration dashboard. This vulnerability is due to insufficient ...

4.9

CVE-2021-34774

  • EPSS 0.05%
  • Published 04.11.2021 16:15:08
  • Last modified 21.11.2024 06:11:10

A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to access sensitive data on an affected system. This vulnerability exists because the application d...

9

CVE-2021-1538

  • EPSS 1.98%
  • Published 04.06.2021 17:15:09
  • Last modified 21.11.2024 05:44:34

A vulnerability in the configuration dashboard of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to execute arbitrary code. This vulnerability is due to insufficient sanitization of configuration entries...

10

CVE-2019-1723

  • EPSS 25.49%
  • Published 13.03.2019 21:29:00
  • Last modified 21.11.2024 04:37:10

A vulnerability in the Cisco Common Services Platform Collector (CSPC) could allow an unauthenticated, remote attacker to access an affected device by using an account that has a default, static password. This account does not have administrator priv...