exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2019-12632

больше 6 лет назад

A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on an affected system. The vulnerability exists because the affected system does not properly validate user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to a user of the web application. A successful exploit could allow the attacker to access the system and perform unauthorized actions.

CVSS3: 7.5

EPSS: Низкий

GHSA-p89j-q5xr-4pww

больше 3 лет назад

A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on an affected system. The vulnerability exists because the affected system does not properly validate user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to a user of the web application. A successful exploit could allow the attacker to access the system and perform unauthorized actions.

CVSS3: 7.5

EPSS: Низкий

BDU:2019-03477

больше 6 лет назад

Уязвимость программного средства автоматизации работы операторов Cisco Finesse, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю получить доступ к системе и выполнить несанкционированные действия

CVSS3: 5.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2019-12632 A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on an affected system. The vulnerability exists because the affected system does not properly validate user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to a user of the web application. A successful exploit could allow the attacker to access the system and perform unauthorized actions.	CVSS3: 7.5	1% Низкий	больше 6 лет назад
GHSA-p89j-q5xr-4pww A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on an affected system. The vulnerability exists because the affected system does not properly validate user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to a user of the web application. A successful exploit could allow the attacker to access the system and perform unauthorized actions.	CVSS3: 7.5	1% Низкий	больше 3 лет назад
BDU:2019-03477 Уязвимость программного средства автоматизации работы операторов Cisco Finesse, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю получить доступ к системе и выполнить несанкционированные действия	CVSS3: 5.3	1% Низкий	больше 6 лет назад

Уязвимостей на страницу