Cisco Application Services Engine

CPE Details

Cisco Application Services Engine
cisco
application_services_engine
-
2020-07-23
14h50 +00:00
2020-07-23
14h50 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:cisco:application_services_engine:-:*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

application_services_engine

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-3335 2020-06-03 17h56 +00:00 A vulnerability in the key store of Cisco Application Services Engine Software could allow an authenticated, local attacker to read sensitive information of other users on an affected device. The vulnerability is due to insufficient authorization limitations. An attacker could exploit this vulnerability by logging in to an affected device locally with valid credentials. A successful exploit could allow the attacker to read the sensitive information of other users on the affected device.
5.5
Medium
CVE-2020-3333 2020-06-03 17h56 +00:00 A vulnerability in the API of Cisco Application Services Engine Software could allow an unauthenticated, remote attacker to update event policies on an affected device. The vulnerability is due to insufficient authentication of users who modify policies on an affected device. An attacker could exploit this vulnerability by crafting a malicious HTTP request to contact an affected device. A successful exploit could allow the attacker to update event policies on the affected device.
5.3
Medium