Cisco Cisco Industrial Network Director

13 CVEs affecting Cisco Cisco Industrial Network Director. Latest disclosed: 2024-11-15. Critical: 2, High: 3.

Top CVEs affecting Cisco Cisco Industrial Network Director
CVESeverityScorePublishedSummary
CVE-2023-20036Critical9.92024-11-15A vulnerability in the web UI of Cisco IND could allow an authenticated, remote attacker to execute arbitrary commands with administrative privileges on the un…
CVE-2019-1976Critical9.82019-09-05A vulnerability in the “plug-and-play” services component of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacke…
CVE-2023-20038High8.82023-01-20A vulnerability in the monitoring application of Cisco Industrial Network Director could allow an authenticated, local attacker to access a static secret key u…
CVE-2018-0446High8.82018-10-05A vulnerability in the web-based management interface of Cisco Industrial Network Director could allow an unauthenticated, remote attacker to conduct a cross-s…
CVE-2019-1861High7.22019-06-05A vulnerability in the software update feature of Cisco Industrial Network Director could allow an authenticated, remote attacker to execute arbitrary code. Th…
CVE-2020-3567Medium6.52020-10-08A vulnerability in the management REST API of Cisco Industrial Network Director (IND) could allow an authenticated, remote attacker to cause the CPU utilizatio…
CVE-2019-15973Medium6.12019-11-26A vulnerability in the web-based management interface of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to conduct a c…
CVE-2019-1940Medium5.92019-07-17A vulnerability in the Web Services Management Agent (WSMA) feature of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker…
CVE-2023-20039Medium5.52024-11-15A vulnerability in Cisco IND could allow an authenticated, local attacker to read application data. This vulnerability is due to insufficient default file p…
CVE-2023-20037Medium5.42023-01-20A vulnerability in Cisco Industrial Network Director could allow an authenticated, remote attacker to conduct stored cross-site scripting (XSS) attacks. The…
CVE-2019-1882Medium5.42019-06-05A vulnerability in Cisco Industrial Network Director could allow an authenticated, remote attacker to conduct stored cross-site scripting (XSS) attacks. The vu…
CVE-2019-1881Medium4.72019-06-05A vulnerability in the web-based management interface of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to conduct a c…
CVE-2018-15392Medium4.32018-10-05A vulnerability in the DHCP service of Cisco Industrial Network Director could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) c…