Cisco Cyber Vision vulnerabilities
5 known vulnerabilities affecting cisco/cyber_vision.
Total CVEs
5
CISA KEV
1
actively exploited
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL1HIGH1MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2022-20685HIGHCVSS 7.5v3.0.0v3.0.1+15 more2024-11-15
CVE-2022-20685 [HIGH] CWE-190 CVE-2022-20685: A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an unauthentica
A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
This vulnerability is due to an integer overflow while processing Modbus traffic. An attacker could exploit this vulnerability by sending crafted Modbus traffic thr
nvd
CVE-2023-20071MEDIUMCVSS 5.8fixed in 4.1.32023-11-01
CVE-2023-20071 [MEDIUM] CWE-1039 CVE-2023-20071: Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could all
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP t
nvd
CVE-2022-20922MEDIUMCVSS 6.5v3.0.0v3.0.1+18 more2022-11-15
CVE-2022-20922 [MEDIUM] CWE-244 CVE-2022-20922: Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detecti
Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device.
These vulnerabilities are due to improper management of system r
nvd
CVE-2022-20943MEDIUMCVSS 5.8v3.0.0v3.0.1+18 more2022-11-15
CVE-2022-20943 [MEDIUM] CWE-244 CVE-2022-20943: Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detecti
Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device.
These vulnerabilities are due to improper management of system r
nvd
CVE-2021-44228CRITICALCVSS 10.0KEVPoCv4.0.22021-12-10
CVE-2021-44228 [CRITICAL] CWE-20 CVE-2021-44228: Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LD
nvd