VYPR

300 Series Managed Switch Firmware

by Cisco Systems, Inc.

CVEs (9)

  • CVE-2018-0465MedOct 5, 2018
    risk 0.40cvss 6.1epss 0.01

    A vulnerability in the web-based management interface of Cisco Small Business 300 Series Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected system. The vulnerability…

  • CVE-2016-1299MedJan 27, 2016
    risk 0.35cvss 5.3epss 0.01

    The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote attackers to cause a denial of service (HTTPS outage) via crafted HTTPS requests, aka Bug ID CSCuw87174.

  • CVE-2018-15439Nov 8, 2018
    risk 0.07cvss epss 0.50

    A vulnerability in the Cisco Small Business Switches software could allow an unauthenticated, remote attacker to bypass the user authentication mechanism of an affected device. The vulnerability exists because under specific circumstances, the affected software enables a…

  • CVE-2019-1943Jul 17, 2019
    risk 0.04cvss epss 0.11

    A vulnerability in the web interface of Cisco Small Business 200, 300, and 500 Series Switches software could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. The vulnerability is due to improper input validation of the parameters of an HTTP…

  • CVE-2020-3147Jan 29, 2020
    risk 0.00cvss epss 0.02

    A vulnerability in the web UI of Cisco Small Business Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper validation of requests sent to the web interface. An attacker…

  • CVE-2019-1891Jul 6, 2019
    risk 0.00cvss epss 0.02

    A vulnerability in the web interface of Cisco Small Business 200, 300, and 500 Series Managed Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper validation of requests…

  • CVE-2019-1892Jul 6, 2019
    risk 0.00cvss epss 0.02

    A vulnerability in the Secure Sockets Layer (SSL) input packet processor of Cisco Small Business 200, 300, and 500 Series Managed Switches could allow an unauthenticated, remote attacker to cause a memory corruption on an affected device. The vulnerability is due to improper…

  • CVE-2019-1814May 15, 2019
    risk 0.00cvss epss 0.02

    A vulnerability in the interactions between the DHCP and TFTP features for Cisco Small Business 300 Series (Sx300) Managed Switches could allow an unauthenticated, remote attacker to cause the device to become low on system memory, which in turn could lead to an unexpected…

  • CVE-2013-1154Mar 7, 2013
    risk 0.00cvss epss 0.02

    The Cisco Small Business 200 Series Smart Switch 1.2.7.76 and earlier, Small Business 300 Series Managed Switch 1.2.7.76 and earlier, and Small Business 500 Series Stackable Managed Switch 1.2.7.76 and earlier allow remote attackers to cause a denial of service (SSL/TLS layer…