Fallos del tipo CWE-254
6 resultadosCVE-2018-0353—A vulnerability in traffic-monitoring functions in Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to cirEPSS 3.9%CVE-2017-12353—A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (EEPSS 1.6%CVE-2018-0110—A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to access the remote support account even afterEPSS 1.5%CVE-2021-43177—As a result of an incomplete fix for CVE-2015-7225, in versions of devise-two-factor prior to 4.0.2 it is possible to reuse a One-Time-PasswEPSS 0.8%CVE-2018-6336HIGHAn issue was discovered in osquery. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing EPSS 0.5%CVE-2021-40006—Vulnerability of design defects in the security algorithm component. Successful exploitation of this vulnerability may affect confidentialitEPSS 0.1%