Cisco

Common Services Platform Collector

19 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2022-20667

  • EPSS 0.22%
  • Veröffentlicht 27.05.2022 14:15:08
  • Zuletzt bearbeitet 21.11.2024 06:43:16

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector (CSPC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface....

6.1

CVE-2022-20666

  • EPSS 0.22%
  • Veröffentlicht 27.05.2022 14:15:08
  • Zuletzt bearbeitet 21.11.2024 06:43:16

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector (CSPC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface....

10

CVE-2021-44228

Warnung Exploit
  • EPSS 94.36%
  • Veröffentlicht 10.12.2021 10:15:09
  • Zuletzt bearbeitet 27.10.2025 17:40:33

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...

5.4

CVE-2021-40131

  • EPSS 0.21%
  • Veröffentlicht 19.11.2021 00:15:07
  • Zuletzt bearbeitet 21.11.2024 06:23:38

A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability ...

4.9

CVE-2021-40130

  • EPSS 0.18%
  • Veröffentlicht 19.11.2021 00:15:07
  • Zuletzt bearbeitet 21.11.2024 06:23:38

A vulnerability in the web application of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to specify non-log files as sources for syslog reporting. This vulnerability is due to improper restriction of the...

4.9

CVE-2021-40129

  • EPSS 0.25%
  • Veröffentlicht 19.11.2021 00:15:07
  • Zuletzt bearbeitet 21.11.2024 06:23:38

A vulnerability in the configuration dashboard of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to submit a SQL query through the CSPC configuration dashboard. This vulnerability is due to insufficient ...

4.9

CVE-2021-34774

  • EPSS 0.05%
  • Veröffentlicht 04.11.2021 16:15:08
  • Zuletzt bearbeitet 21.11.2024 06:11:10

A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to access sensitive data on an affected system. This vulnerability exists because the application d...

9

CVE-2021-1538

  • EPSS 1.98%
  • Veröffentlicht 04.06.2021 17:15:09
  • Zuletzt bearbeitet 21.11.2024 05:44:34

A vulnerability in the configuration dashboard of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to execute arbitrary code. This vulnerability is due to insufficient sanitization of configuration entries...

10

CVE-2019-1723

  • EPSS 25.34%
  • Veröffentlicht 13.03.2019 21:29:00
  • Zuletzt bearbeitet 21.11.2024 04:37:10

A vulnerability in the Cisco Common Services Platform Collector (CSPC) could allow an unauthenticated, remote attacker to access an affected device by using an account that has a default, static password. This account does not have administrator priv...