Known Vulnerabilities for Fog Director by Cisco
Listed below are 2 of the newest known vulnerabilities associated with "Fog Director" by "Cisco".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
|CVE||Shortened Description||Severity||Publish Date||Last Modified|
|CVE-2022-41223||The Director database component of MiVoice Connect through 19.3 (22.22.6100.0) could allow an authenticated attacker to condu...||Not Provided||2022-11-22||2022-11-22|
|CVE-2022-2880||Requests forwarded by ReverseProxy include the raw query parameters from the inbound request, including unparseable parameter...||Not Provided||2022-10-14||2022-10-25|
|CVE-2016-6405||Cisco Fog Director 1.0(0) for IOx allows remote authenticated users to bypass intended access restrictions and write to arbit...||6.5 - MEDIUM||2016-09-18||2016-11-28|
|CVE-2016-1306||Multiple cross-site scripting (XSS) vulnerabilities in Cisco Fog Director 1.0(0) allow remote attackers to inject arbitrary w...||6.1 - MEDIUM||2016-02-06||2016-02-16|
Known Affected Configurations (CPE V2.3)
Popular searches for Fog Director
Cisco Fog Director Use Cisco Director Y W to manage large-scale production deployments of Internet of Things IoT applications.Application software Cisco Systems Software deployment Application lifecycle management Computer network Internet of things Change management Debugging Troubleshooting Fog computing Application retirement Product (business) Application programming interface Central processing unit User experience Management system Representational state transfer Productivity Backup and Restore Business transaction management
Z VCisco Security Advisory: Cisco Fog Director for IOx Arbitrary File Write Vulnerability A vulnerability in the Cisco Director Ox could allow an authenticated, remote attacker to write a file to arbitrary locations. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by uploading a crafted file via the Cartridge interface. An exploit could allow the attacker to write or overwrite arbitrary files on an affected system. Cisco CiscoSecurityAdvisory/ isco -sa-20160914-ioxfdCisco Systems Vulnerability (computing) Computer file Exploit (computer security) Security hacker Computer security Software Data validation Authentication Security Upload Patch (computing) Information ROM cartridge Data erasure Common Vulnerabilities and Exposures Interface (computing) Common Weakness Enumeration Windows Metafile vulnerability Common Vulnerability Scoring System