VYPR

FXOS Software

by Cisco Systems, Inc.

CVEs (47)

  • CVE-2022-20934MedNov 15, 2022
    risk 0.39cvss 6.0epss 0.00

    A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software and Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as root. This vulnerability is due to improper input validation…

  • CVE-2019-1734MedNov 5, 2019
    risk 0.36cvss 5.5epss 0.00

    A vulnerability in the implementation of a CLI diagnostic command in Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to view sensitive system files that should be restricted. The attacker could use this information to conduct additional…

  • CVE-2026-20091MedFeb 25, 2026
    risk 0.31cvss 4.8epss 0.00

    A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Manager Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to…

  • CVE-2023-20234MedAug 23, 2023
    risk 0.29cvss 4.4epss 0.00

    A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to create a file or overwrite any file on the filesystem of an affected device, including system files. The vulnerability occurs because there is no validation of parameters when a…

  • CVE-2022-20625MedFeb 23, 2022
    risk 0.28cvss 4.3epss 0.03

    A vulnerability in the Cisco Discovery Protocol service of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the service to restart, resulting in a denial of service (DoS) condition. This vulnerability is due to improper…

  • CVE-2024-20387Oct 23, 2024
    risk 0.00cvss epss 0.00

    A vulnerability in the web-based management interface of Cisco FMC Software could allow an authenticated, remote attacker to store malicious content for use in XSS attacks. This vulnerability is due to improper input sanitization in the web-based management interface of Cisco…

  • CVE-2024-20294Feb 28, 2024
    risk 0.00cvss epss 0.00

    A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper…

Page 3 of 3