New Vulnerabilities Thursday 16 June


New Alerts for Cisco and IBM.

Cisco 

Cisco has published 7 new bulletins, 2 rated Critical, 1 High, and 4 Medium.
More info.

A vulnerability in the external authentication functionality of Cisco Secure Email and Web Manager, and Cisco Email Security Appliance could allow an unauthenticated, remote attacker to bypass authentication and log in to the web management interface of an affected device. CVSSv3 score of 9.8
More info.

A vulnerability in the web-based management interface of Cisco Small Business Routers could allow an unauthenticated, remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly, resulting in a DoS. CVSSv3 score of 9.8
More info.

A vulnerability in Cisco Unified IP Phones could allow an unauthenticated, remote attacker to impersonate another user's phone if the Cisco Unified Communications Manager is in secure mode. CVSSv3 score of 7.4
More info.

A vulnerability in the login page of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to log in without credentials and access all roles without any restrictions. CVSSv3 score of 5.3
More info.

A vulnerability in the web-based management interface of Cisco AppDynamics Controller Software could allow an unauthenticated, remote attacker to access a configuration file and the login page for an administrative console that they would not normally have authorization to access. CVSSv3 score of 5.3
More info.

IBM 

Netcool Operations Insight v1.6.4 contains fixes for multiple security vulnerabilities. CVSSv3 score of 9.8
More info.



Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/

Find Out More

© Computer Network Defence Limited 2022