Cisco Ios Xe Software 16.10.1 vulnerabilities

CVE-2020-3211 [HIGH] CWE-77 CVE-2020-3211: A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges on the underlying operating system of an affected device. The vulnerability is due to improper input sanitization. An attacker who has valid administrative access to an affected device could exploit this

CVE-2020-3221 [HIGH] CWE-20 CVE-2020-3221: A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisc A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper validation of parameters in a Flexible NetFlow Version 9 re

CVE-2020-3222 [MEDIUM] CWE-17 CVE-2020-3222: A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an una A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to bypass access control restrictions on an affected device. The vulnerability is due to the presence of a proxy service at a specific endpoint of the web UI. An attacker could exploit this vulnerability by connecting to t

CVE-2020-3206 [MEDIUM] CWE-20 CVE-2020-3206: A vulnerability in the handling of IEEE 802.11w Protected Management Frames (PMFs) of Cisco Catalyst A vulnerability in the handling of IEEE 802.11w Protected Management Frames (PMFs) of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerability exists because the affected software does not properl