Skip to main content
CVE-2018-0268 CRITICAL Act Now

A vulnerability in the container management subsystem of Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and gain elevated. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Kubernetes Cisco Digital Network Architecture Center
NVD
CVSS 3.0
10.0
EPSS
5.4%
CVE-2018-0222 CRITICAL Act Now

A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to log in to an affected system by using an administrative account that has default,. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Cisco Digital Network Architecture Center
NVD
CVSS 3.0
10.0
EPSS
3.8%
CVE-2018-7218 CRITICAL Act Now

The AppFirewall functionality in Citrix NetScaler Application Delivery Controller and NetScaler Gateway 10.5 before Build 68.7, 11.0 before Build 71.24, 11.1 before Build 58.13, and 12.0 before Build. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Citrix RCE Application Delivery Controller Firmware Netscaler Gateway Firmware
NVD
CVSS 3.0
9.8
EPSS
8.2%
CVE-2018-0271 CRITICAL Act Now

A vulnerability in the API gateway of the Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and access critical services. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Cisco Digital Network Architecture Center
NVD
CVSS 3.0
9.8
EPSS
2.7%
CVE-2018-10730 CRITICAL PATCH Act Now

All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 1.0 to 1.33 are prone to OS command injection. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, low attack complexity.

Command Injection Fl Switch 3005 Firmware Fl Switch 3005T Firmware Fl Switch 3004T Fx Firmware Fl Switch 3004T Fx St Firmware +25
NVD
CVSS 3.0
9.1
EPSS
4.6%
CVE-2018-10731 CRITICAL PATCH Act Now

All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 1.0 to 1.33 are prone to buffer overflows when handling very large cookies (a different vulnerability than. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, no authentication required.

Buffer Overflow Fl Switch 3005 Firmware Fl Switch 3005T Firmware Fl Switch 3004T Fx Firmware Fl Switch 3004T Fx St Firmware +25
NVD
CVSS 3.0
9.0
EPSS
2.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy