Skip to main content
CVE-2021-1531 HIGH POC THREAT This Week

A vulnerability in the web UI of Cisco Modeling Labs could allow an authenticated, remote attacker to execute arbitrary commands with the privileges of the web application on the underlying operating. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Cisco Information Disclosure Modeling Labs
NVD
CVSS 3.1
8.8
EPSS
30.5%
CVE-2021-1487 HIGH This Week

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Evolved Programmable Network (EPN) Manager could allow an authenticated, remote attacker to execute arbitrary. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Denial Of Service Command Injection Information Disclosure Evolved Programmable Network Manager +1
NVD
CVSS 3.1
8.8
EPSS
2.1%
CVE-2021-1560 HIGH This Week

Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, remote attacker to perform a command injection attack on an affected device. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Docker Command Injection Dna Spaces
NVD
CVSS 3.1
7.2
EPSS
2.7%
CVE-2021-1559 HIGH This Week

Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, remote attacker to perform a command injection attack on an affected device. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Docker Command Injection Dna Spaces
NVD
CVSS 3.1
7.2
EPSS
2.7%
CVE-2021-1555 HIGH This Week

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Wap125 Firmware Wap131 Firmware Wap150 Firmware +3
NVD
CVSS 3.1
7.2
EPSS
1.7%
CVE-2021-1554 HIGH This Week

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Wap125 Firmware Wap131 Firmware Wap150 Firmware +3
NVD
CVSS 3.1
7.2
EPSS
1.6%
CVE-2021-1553 HIGH This Week

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Wap125 Firmware Wap131 Firmware Wap150 Firmware +3
NVD
CVSS 3.1
7.2
EPSS
1.7%
CVE-2021-1552 HIGH This Week

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Wap125 Firmware Wap131 Firmware Wap150 Firmware +3
NVD
CVSS 3.1
7.2
EPSS
1.7%
CVE-2021-1551 HIGH This Week

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Wap125 Firmware Wap131 Firmware Wap150 Firmware +3
NVD
CVSS 3.1
7.2
EPSS
1.7%
CVE-2021-1550 HIGH This Week

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Wap125 Firmware Wap131 Firmware Wap150 Firmware +3
NVD
CVSS 3.1
7.2
EPSS
1.7%
CVE-2021-1549 HIGH This Week

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Wap125 Firmware Wap131 Firmware Wap150 Firmware +3
NVD
CVSS 3.1
7.2
EPSS
1.7%
CVE-2021-1548 HIGH This Week

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Wap125 Firmware Wap131 Firmware Wap150 Firmware +3
NVD
CVSS 3.1
7.2
EPSS
1.6%
CVE-2021-1547 HIGH This Week

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Wap125 Firmware Wap131 Firmware Wap150 Firmware +3
NVD
CVSS 3.1
7.2
EPSS
1.6%
CVE-2021-1558 MEDIUM This Month

Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, local attacker to elevate privileges and execute arbitrary commands on the underlying operating system as root. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Cisco Command Injection Dna Spaces
NVD
CVSS 3.1
6.7
EPSS
0.3%
CVE-2021-1557 MEDIUM This Month

Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, local attacker to elevate privileges and execute arbitrary commands on the underlying operating system as root. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Cisco Command Injection Dna Spaces
NVD
CVSS 3.1
6.7
EPSS
0.3%
CVE-2021-1358 MEDIUM This Month

A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco Open Redirect Finesse
NVD
CVSS 3.1
6.1
EPSS
0.8%
CVE-2021-1254 MEDIUM This Month

Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco XSS Finesse
NVD
CVSS 3.1
4.8
EPSS
0.7%
CVE-2021-1306 LOW Monitor

A vulnerability in the restricted shell of Cisco Evolved Programmable Network (EPN) Manager, Cisco Identity Services Engine (ISE), and Cisco Prime Infrastructure could allow an authenticated, local. Rated low severity (CVSS 3.4), this vulnerability is low attack complexity. No vendor patch available.

Cisco Information Disclosure Evolved Programmable Network Manager Identity Services Engine Prime Infrastructure
NVD
CVSS 3.1
3.4
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy