Cisco Broadworks vulnerabilities
2 known vulnerabilities affecting cisco/broadworks.
Total CVEs
2
CISA KEV
1
actively exploited
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2022-20869MEDIUMCVSS 6.1≥ 22.0, < 22.0.2022.06≥ 23.0, < 23.0.2022.06+1 more2022-08-10
CVE-2022-20869 [MEDIUM] CWE-79 CVE-2022-20869: A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platf
A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly validate user-supplied input.
nvd
CVE-2021-44228CRITICALCVSS 10.0KEVPoCfixed in 2021.11_1.1622021-12-10
CVE-2021-44228 [CRITICAL] CWE-20 CVE-2021-44228: Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LD
nvd