Cisco Sf200E-48 Firmware vulnerabilities

CVE-2019-12636 [HIGH] CWE-352 CVE-2019-12636: A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Swit A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to insufficient CSRF protections for the web-based management interface on an affected device. An

CVE-2019-12718 [MEDIUM] CWE-79 CVE-2019-12718: A vulnerability in the web-based interface of Cisco Small Business Smart and Managed Switches could A vulnerability in the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface. The vulnerability is due to insufficient validation of user-supplied input by the web-based interface of the affected dev