Cisco Application Services Engine
Recent Cisco Application Services Engine Security Advisories
Advisory | Title | Published |
---|---|---|
2021-03-13 | Cisco ACI Multi-Site Orchestrator Application Services Engine Deployment Authentication Bypass Vulnerability | March 13, 2021 |
By the Year
In 2024 there have been 0 vulnerabilities in Cisco Application Services Engine . Application Services Engine did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 2 | 8.15 |
2020 | 1 | 5.50 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Application Services Engine vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Cisco Application Services Engine Security Vulnerabilities
Multiple vulnerabilities in Cisco Application Services Engine could
CVE-2021-1393
9.8 - Critical
- February 24, 2021
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote attacker to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For more information about these vulnerabilities, see the Details section of this advisory.
Missing Authentication for Critical Function
Multiple vulnerabilities in Cisco Application Services Engine could
CVE-2021-1396
6.5 - Medium
- February 24, 2021
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote attacker to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For more information about these vulnerabilities, see the Details section of this advisory.
Missing Authentication for Critical Function
A vulnerability in the key store of Cisco Application Services Engine Software could
CVE-2020-3335
5.5 - Medium
- June 03, 2020
A vulnerability in the key store of Cisco Application Services Engine Software could allow an authenticated, local attacker to read sensitive information of other users on an affected device. The vulnerability is due to insufficient authorization limitations. An attacker could exploit this vulnerability by logging in to an affected device locally with valid credentials. A successful exploit could allow the attacker to read the sensitive information of other users on the affected device.
AuthZ
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Cisco Application Services Engine or by Cisco? Click the Watch button to subscribe.