Cisco IOS XE Software denial of service | CVE-2023-20100
NAME__________Cisco IOS XE Software denial of servicePlatforms Affected:Cisco IOS XE Software Cisco Catalyst 9800 Series Wireless Controllers Cisco Catalyst 9800...
Vulnerabilities
Cisco ASA, FTD, IOS and IOS XE Software denial of service | CVE-2023-20081
NAME__________Cisco ASA, FTD, IOS and IOS XE Software denial of servicePlatforms Affected:Cisco Adaptive Security Appliance Software Cisco IOS Software Cisco...
Cisco IOS XE Software privilege escalation | CVE-2023-20029
NAME__________Cisco IOS XE Software privilege escalationPlatforms Affected:Cisco IOS XE Software Cisco Catalyst 9200 Series Switches Cisco Catalyst 9300 Series SwitchesRisk...
Apache Tomcat information disclosure | CVE-2023-28708
NAME__________Apache Tomcat information disclosurePlatforms Affected:Apache Tomcat 9.0.0-M1 Apache Tomcat 8.5.0 Apache Tomcat 10.1.0-M1 Apache Tomcat 8.5.85 Apache Tomcat 9.0.71 Apache...
Cisco IOS XE Software directory traversal | CVE-2023-20066
NAME__________Cisco IOS XE Software directory traversalPlatforms Affected:Cisco IOS XE SoftwareRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Cisco IOS XE Software could allow a remote...
Cisco DNA Center information disclosure | CVE-2023-20059
NAME__________Cisco DNA Center information disclosurePlatforms Affected:Cisco DNA CenterRisk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Cisco DNA Center could allow a remote authenticated attacker to...
OpenSSL denial of service | CVE-2023-0464
NAME__________OpenSSL denial of servicePlatforms Affected:OpenSSL OpenSSL 1.1.1 OpenSSL OpenSSL 1.0.2 OpenSSL OpenSSL 3.0.0 OpenSSL OpenSSL 3.1.0Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________OpenSSL...
Cisco Access Point Software command execution | CVE-2023-20097
NAME__________Cisco Access Point Software command executionPlatforms Affected:Cisco Aironet 1540 Series APs Cisco Aironet 1560 Series APs Cisco Aironet 1800 Series...
Cisco IOS XE Software code execution | CVE-2023-20082
NAME__________Cisco IOS XE Software code executionPlatforms Affected:Cisco IOS XE Software Cisco Catalyst 9300 Series SwitchesRisk Level:6.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cisco IOS XE...
Cisco IOS XE Software denial of service | CVE-2023-20067
NAME__________Cisco IOS XE Software denial of servicePlatforms Affected:Cisco IOS XE Software Cisco Catalyst 9800 Series Wireless Controllers Cisco Catalyst 9800...
cilium-cli security bypass | CVE-2023-28114
NAME__________cilium-cli security bypassPlatforms Affected:Risk Level:4.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________cilium-cli could allow a remote authenticated attacker within the local network to bypass security...
VK All in One Expansion Unit Plugin for WordPress cross-site scripting | CVE-2023-0937
NAME__________VK All in One Expansion Unit Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress VK All in One Expansion Unit Plugin for...
Cisco Access Point Software denial of service | CVE-2023-20112
NAME__________Cisco Access Point Software denial of servicePlatforms Affected:Cisco Catalyst 9100 APs Cisco Business 150 APs Cisco Business 151 Mesh ExtendersRisk...
Cisco Access Point Software denial of service | CVE-2023-20056
NAME__________Cisco Access Point Software denial of servicePlatforms Affected:Cisco Aironet 1540 Series APs Cisco Aironet 1560 Series APs Cisco Aironet 1800...
Cisco ASA and FTD Software security bypass | CVE-2023-20107
NAME__________Cisco ASA and FTD Software security bypassPlatforms Affected:Cisco Adaptive Security Appliance Software Cisco Firepower Threat Defense Software Cisco ASA 5506-X...
Discourse server-side request forgery | CVE-2023-28111
NAME__________Discourse server-side request forgeryPlatforms Affected:Risk Level:5.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Discourse is vulnerable to server-side request forgery, caused by a flaw in the...
silverstripe/graphql denial of service | CVE-2023-28104
NAME__________silverstripe/graphql denial of servicePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________silverstripe/graphql is vulnerable to a denial of service, caused by a flaw...
Discourse denial of service | CVE-2023-28107
NAME__________Discourse denial of servicePlatforms Affected:Risk Level:4.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Discourse is vulnerable to a denial of service, caused by improper allocation...
RockOA file upload | CVE-2023-1501
NAME__________RockOA file uploadPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________RockOA could allow a remote authenticated attacker to upload arbitrary files, caused by improper...
GoToWP Plugin for WordPress cross-site scripting | CVE-2023-0369
NAME__________GoToWP Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress GoToWP Plugin for WordPress 5.1.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________GoToWP Plugin for WordPress is vulnerable...
Discourse cross-site scripting | CVE-2023-25172
NAME__________Discourse cross-site scriptingPlatforms Affected:Risk Level:4.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Discourse is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by...
Simple Art Gallery cross-site scripting | CVE-2023-1500
NAME__________Simple Art Gallery cross-site scriptingPlatforms Affected:Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Simple Art Gallery is vulnerable to cross-site scripting, caused by improper validation...
RapidLoad Power-Up for Autoptimize Plugin for WordPress cross-site request forgery | CVE-2023-1472
NAME__________RapidLoad Power-Up for Autoptimize Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress RapidLoad Power-Up for Autoptimize Plugin for WordPress 1.7.1Risk Level:6.3Exploitability:UnprovenConsequences:Gain...
Pimcore cross-site scripting | CVE-2023-28429
NAME__________Pimcore cross-site scriptingPlatforms Affected:Pimcore Pimcore 10.5.18Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Pimcore is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
