cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-3454,https://securityvulnerability.io/vulnerability/CVE-2020-3454,Cisco NX-OS Software Call Home Command Injection Vulnerability,"A vulnerability in the Call Home feature of Cisco NX-OS Software could allow an authenticated, remote attacker to inject arbitrary commands that could be executed with root privileges on the underlying operating system (OS). The vulnerability is due to insufficient input validation of specific Call Home configuration parameters when the software is configured for transport method HTTP. An attacker could exploit this vulnerability by modifying parameters within the Call Home configuration on an affected device. A successful exploit could allow the attacker to execute arbitrary commands with root privileges on the underlying OS.",Cisco,Cisco Nx-os Software 5.0(1a),7.2,HIGH,0.0021100000012665987,false,,false,false,true,2024-08-04T08:16:41.000Z,,false,false,,2020-08-27T16:15:00.000Z,0
CVE-2020-3175,https://securityvulnerability.io/vulnerability/CVE-2020-3175,Cisco MDS 9000 Series Multilayer Switches Denial of Service Vulnerability,"A vulnerability in the resource handling system of Cisco NX-OS Software for Cisco MDS 9000 Series Multilayer Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper resource usage control. An attacker could exploit this vulnerability by sending traffic to the management interface (mgmt0) of an affected device at very high rates. An exploit could allow the attacker to cause unexpected behaviors such as high CPU usage, process crashes, or even full system reboots of an affected device.",Cisco,Cisco Nx-os Software 5.0(1a),8.6,HIGH,0.0015999999595806003,false,,false,false,true,2024-08-04T08:16:28.000Z,,false,false,,2020-02-26T00:00:00.000Z,0