Cisco
Cisco has published 7 new bulletins, 2 rated Critical, 1 High, and 4 Medium.
More info.
A vulnerability in the external authentication functionality of Cisco Secure Email and Web Manager, and Cisco Email Security Appliance could allow an unauthenticated, remote attacker to bypass authentication and log in to the web management interface of an affected device. CVSSv3 score of 9.8
More info.
A vulnerability in the web-based management interface of Cisco Small Business Routers could allow an unauthenticated, remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly, resulting in a DoS. CVSSv3 score of 9.8
More info.
A vulnerability in Cisco Unified IP Phones could allow an unauthenticated, remote attacker to impersonate another user's phone if the Cisco Unified Communications Manager is in secure mode. CVSSv3 score of 7.4
More info.
A vulnerability in the login page of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to log in without credentials and access all roles without any restrictions. CVSSv3 score of 5.3
More info.
A vulnerability in the web-based management interface of Cisco AppDynamics Controller Software could allow an unauthenticated, remote attacker to access a configuration file and the login page for an administrative console that they would not normally have authorization to access. CVSSv3 score of 5.3
More info.
Netcool Operations Insight v1.6.4 contains fixes for multiple security vulnerabilities. CVSSv3 score of 9.8
More info.