CVE-2020-26080 - A vulnerability in the user management functionality of Cisco IoT Field N - CVEs Blog

A vulnerability in the user management functionality of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to manage user information for users in different domains on an affected system. The vulnerability is due to improper domain access control. An attacker could exploit this vulnerability by manipulating JSON payloads to target different domains on an affected system. A successful exploit could allow the attacker to manage user information for users in different domains on an affected system.

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26080

Reference (s):

CISCO:20201118 Cisco IoT Field Network Director Improper Domain Access Control Vulnerability
URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-FND-UPWD-dCRPuQ78

CVE-2020-26080 – A vulnerability in the user management functionality of Cisco IoT Field N

Something Fresh

CVE-2004-1715 - Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 all

CVE-2020-27216 - In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thru 1

CVE-2020-27212 - STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect acce

What People Reading

CVE-2015-0320 - Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and

CVE-2015-0353 - Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.

CVE-2020-2576 - Vulnerability in the Oracle Outside In Technology product of Oracle Fusio

CVE-2020-25117 - The Admin CP in vBulletin 5.6.3 allows XSS via a Junior Member Title to U

CVE-2020-21124 - UReport 2.2.9 allows attackers to execute arbitrary code due to a lack of

Categories

Partners

Just add here your partners image or promo text