Cisco SF200-24 Firmware 1.4.11

CPE Details

Cisco SF200-24 Firmware 1.4.11
cisco
sf200-24_firmware
1.4.11
2020-09-09
12h46 +00:00
2020-09-09
12h46 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:cisco:sf200-24_firmware:1.4.11:*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

sf200-24_firmware

Version

1.4.11

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2019-15993 2020-09-23 00h26 +00:00 A vulnerability in the web UI of Cisco Small Business Switches could allow an unauthenticated, remote attacker to access sensitive device information. The vulnerability exists because the software lacks proper authentication controls to information accessible from the web UI. An attacker could exploit this vulnerability by sending a malicious HTTP request to the web UI of an affected device. A successful exploit could allow the attacker to access sensitive device information, which includes configuration files.
5.3
Medium
CVE-2020-3496 2020-08-26 16h15 +00:00 A vulnerability in the IPv6 packet processing engine of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient validation of incoming IPv6 traffic. An attacker could exploit this vulnerability by sending a crafted IPv6 packet through an affected device. A successful exploit could allow the attacker to cause the switch management CLI to stop responding, resulting in a DoS condition. This vulnerability is specific to IPv6 traffic. IPv4 traffic is not affected.
5.3
Medium