Falhas do tipo CWE-264
284 resultadosCVE-2017-3832—A vulnerability in the web management interface of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacEPSS 3.2%CVE-2017-12226—A vulnerability in the web-based Wireless Controller GUI of Cisco IOS XE Software for Cisco 5760 Wireless LAN Controllers, Cisco Catalyst 45EPSS 3.2%CVE-2021-33036—Apache Hadoop Privilege escalation vulnerabilityEPSS 3.2%CVE-2017-12230—A vulnerability in the web-based user interface (web UI) of Cisco IOS XE 16.2 could allow an authenticated, remote attacker to elevate theirEPSS 3.2%CVE-2018-0417HIGHCisco Wireless LAN Controller Software GUI Privilege Escalation VulnerabilityEPSS 3.2%CVE-2022-41978HIGHWordPress Zoho CRM Lead Magnet plugin <= 1.7.5.8 - Auth. Arbitrary Options Update vulnerabilityEPSS 3.0%CVE-2017-6713—A vulnerability in the Play Framework of Cisco Elastic Services Controller (ESC) could allow an unauthenticated, remote attacker to gain fulEPSS 2.9%CVE-2018-7505—In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prioEPSS 2.9%CVE-2018-0330—A vulnerability in the NX-API management application programming interface (API) in devices running, or based on, Cisco NX-OS Software couldEPSS 2.8%CVE-2019-1889HIGHCisco Application Policy Infrastructure Controller REST API Privilege Escalation VulnerabilityEPSS 2.8%CVE-2018-13801—A vulnerability has been identified in ROX II (All versions < V2.12.1). An attacker with network access to port 22/tcp and valid low-privileEPSS 2.7%CVE-2018-0317—A vulnerability in the web interface of Cisco Prime Collaboration Provisioning (PCP) could allow an authenticated, remote attacker to escalaEPSS 2.6%CVE-2018-0432—Cisco SD-WAN Solution Privilege Escalation VulnerabilityEPSS 2.6%CVE-2018-0322—A vulnerability in the web management interface of Cisco Prime Collaboration Provisioning (PCP) could allow an authenticated, remote attackeEPSS 2.6%CVE-2018-0213—A vulnerability in the credential reset functionality for Cisco Identity Services Engine (ISE) could allow an authenticated, remote attackerEPSS 2.6%CVE-2022-34487CRITICALWordPress Shortcode Addons plugin <= 3.0.2 - Unauthenticated Arbitrary Option Update vulnerabilityEPSS 2.6%CVE-2022-33198CRITICALWordPress Accordions plugin <= 2.0.2 - Unauthenticated WordPress Options Change vulnerabilityEPSS 2.6%CVE-2018-0336—A vulnerability in the batch provisioning feature of Cisco Prime Collaboration Provisioning could allow an authenticated, remote attacker toEPSS 2.4%CVE-2018-0440—Cisco Data Center Network Manager Privilege Escalation to Underlying Operating System VulnerabilityEPSS 2.3%CVE-2023-2255—Remote documents loaded without prompt via IFrameEPSS 2.2%