VYPR

Registered Envelope Service

by Cisco Systems, Inc.

CVEs (12)

  • CVE-2017-12323MedNov 16, 2017
    risk 0.40cvss 6.1epss 0.01

    Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack or redirect a user of the affected service to an undesired web page. The…

  • CVE-2017-12322MedNov 16, 2017
    risk 0.40cvss 6.1epss 0.01

    Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack or redirect a user of the affected service to an undesired web page. The…

  • CVE-2017-12321MedNov 16, 2017
    risk 0.40cvss 6.1epss 0.01

    Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack or redirect a user of the affected service to an undesired web page. The…

  • CVE-2017-12320MedNov 16, 2017
    risk 0.40cvss 6.1epss 0.01

    Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack or redirect a user of the affected service to an undesired web page. The…

  • CVE-2017-12292MedNov 16, 2017
    risk 0.40cvss 6.1epss 0.01

    Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack or redirect a user of the affected service to an undesired web page. The…

  • CVE-2017-12291MedNov 16, 2017
    risk 0.40cvss 6.1epss 0.01

    Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack or redirect a user of the affected service to an undesired web page. The…

  • CVE-2017-12290MedNov 16, 2017
    risk 0.40cvss 6.1epss 0.01

    Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack or redirect a user of the affected service to an undesired web page. The…

  • CVE-2017-3889MedApr 7, 2017
    risk 0.40cvss 6.1epss 0.01

    A vulnerability in the web interface of the Cisco Registered Envelope Service could allow an unauthenticated, remote attacker to redirect a user to a undesired web page, aka an Open Redirect. This vulnerability affects the Cisco Registered Envelope cloud-based service. More…

  • CVE-2018-0367MedAug 15, 2018
    risk 0.35cvss 5.4epss 0.01

    A vulnerability in the web-based management interface of the Cisco Registered Envelope Service could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected service. The…

  • CVE-2018-0208MedMar 8, 2018
    risk 0.35cvss 5.4epss 0.01

    A vulnerability in the web-based management interface of the (cloud based) Cisco Registered Envelope Service could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected service.…

  • CVE-2019-1777Apr 18, 2019
    risk 0.00cvss epss 0.01

    A vulnerability in the web-based interface of the Cisco Registered Envelope Service could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against another user of the service. The vulnerability is due to insufficient validation of…

  • CVE-2018-15448Nov 8, 2018
    risk 0.00cvss epss 0.02

    A vulnerability in the user management functions of Cisco Registered Envelope Service could allow an unauthenticated, remote attacker to discover sensitive user information. The attacker could use this information to conduct additional reconnaissance attacks. The vulnerability…