cbcvebase.

Cisco Sf220-24 Firmware vulnerabilities

4 known vulnerabilities affecting cisco/sf220-24_firmware.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2021-1541P3HIGHCVSS 7.2fixed in 1.2.0.62021-06-16
CVE-2021-1541 [HIGH] CWE-287 CVE-2021-1541: Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Sm Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary commands as a root user on the underlying operating system Conduct a cross-site scripting (XSS) attack Conduct an HTML injection attack For more information
nvd
CVE-2021-1542P3HIGHCVSS 8.1fixed in 1.2.0.62021-06-16
CVE-2021-1542 [HIGH] CWE-287 CVE-2021-1542: Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Sm Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary commands as a root user on the underlying operating system Conduct a cross-site scripting (XSS) attack Conduct an HTML injection attack For more information
nvd
CVE-2021-1571P3MEDIUMCVSS 6.1fixed in 1.2.0.62021-06-16
CVE-2021-1571 [MEDIUM] CWE-287 CVE-2021-1571: Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Sm Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary commands as a root user on the underlying operating system Conduct a cross-site scripting (XSS) attack Conduct an HTML injection attack For more informatio
nvd
CVE-2021-1543P3MEDIUMCVSS 6.1fixed in 1.2.0.62021-06-16
CVE-2021-1543 [MEDIUM] CWE-287 CVE-2021-1543: Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Sm Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary commands as a root user on the underlying operating system Conduct a cross-site scripting (XSS) attack Conduct an HTML injection attack For more informatio
nvd
Cisco Sf220-24 Firmware vulnerabilities | cvebase