Skip to main content

Sg220 50P Firmware

7 CVEs product

Monthly

CVE-2021-1571 MEDIUM PATCH This Month

Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Cisco XSS Authentication Bypass Sf220 24 Firmware Sf220 24P Firmware +7
NVD
CVSS 3.1
6.1
EPSS
9.7%
CVE-2021-1543 MEDIUM This Month

Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco XSS Authentication Bypass Sf220 24 Firmware Sf220 24P Firmware +7
NVD
CVSS 3.1
6.1
EPSS
9.3%
CVE-2021-1542 HIGH This Week

Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Cisco XSS Authentication Bypass Sf220 24 Firmware Sf220 24P Firmware +7
NVD
CVSS 3.1
8.1
EPSS
1.4%
CVE-2021-1541 HIGH This Week

Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco XSS Authentication Bypass Sf220 24 Firmware Sf220 24P Firmware +7
NVD
CVSS 3.1
7.2
EPSS
8.8%
CVE-2019-1914 HIGH POC THREAT This Week

A vulnerability in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an authenticated, remote attacker to perform a command injection attack. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Sf 220 24 Firmware Sf220 24P Firmware Sf220 48 Firmware +8
NVD Exploit-DB
CVSS 3.0
7.2
EPSS
24.9%
CVE-2019-1913 CRITICAL POC THREAT Act Now

Multiple vulnerabilities in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an unauthenticated, remote attacker to overflow a buffer, which then allows the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Cisco RCE Sf 220 24 Firmware Sf220 24P Firmware +9
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
25.9%
CVE-2019-1912 CRITICAL POC THREAT Act Now

A vulnerability in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an unauthenticated, remote attacker to upload arbitrary files. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Cisco Sf 220 24 Firmware Sf220 24P Firmware Sf220 48 Firmware +8
NVD Exploit-DB
CVSS 3.1
9.1
EPSS
17.0%
EPSS 10% CVSS 6.1
MEDIUM PATCH This Month

Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Cisco XSS Authentication Bypass +9
NVD
EPSS 9% CVSS 6.1
MEDIUM This Month

Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco XSS Authentication Bypass +9
NVD
EPSS 1% CVSS 8.1
HIGH This Week

Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Cisco XSS Authentication Bypass +9
NVD
EPSS 9% CVSS 7.2
HIGH This Week

Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco XSS Authentication Bypass +9
NVD
EPSS 25% CVSS 7.2
HIGH POC THREAT This Week

A vulnerability in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an authenticated, remote attacker to perform a command injection attack. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Sf 220 24 Firmware +10
NVD Exploit-DB
EPSS 26% CVSS 9.8
CRITICAL POC THREAT Act Now

Multiple vulnerabilities in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an unauthenticated, remote attacker to overflow a buffer, which then allows the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Cisco RCE +11
NVD Exploit-DB
EPSS 17% CVSS 9.1
CRITICAL POC THREAT Act Now

A vulnerability in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an unauthenticated, remote attacker to upload arbitrary files. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Cisco Sf 220 24 Firmware +10
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy