Cisco Mobility Services Engine — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Mobility Services Engine, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2018-0374 — CVSS 9.8 (critical): A vulnerability in the Policy Builder database of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to…
CVE-2018-0377 — CVSS 9.8 (critical): A vulnerability in the Open Systems Gateway initiative (OSGi) interface of Cisco Policy Suite before 18.1.0 could allow an unauthenticated…
CVE-2018-0376 — CVSS 9.8 (critical): A vulnerability in the Policy Builder interface of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to…
CVE-2018-0375 — CVSS 9.8 (critical): A vulnerability in the Cluster Manager of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to log in to an…
CVE-2018-0116 — CVSS 7.2 (high): A vulnerability in the RADIUS authentication module of Cisco Policy Suite could allow an unauthenticated, remote attacker to be authorized…
CVE-2015-4282 — CVSS 6.9 (medium): Cisco Mobility Services Engine (MSE) through 8.0.120.7 uses weak permissions for unspecified binary files, which allows local users to…
CVE-2016-9197 — CVSS 6.7 (medium): A vulnerability in the CLI command parser of the Cisco Mobility Express 2800 and 3800 Series Wireless LAN Controllers could allow an…
CVE-2015-6316 — CVSS 6.5 (medium): The default configuration of sshd_config in Cisco Mobility Services Engine (MSE) through 8.0.120.7 allows logins by the oracle account…
CVE-2018-0134 — CVSS 5.3 (medium): A vulnerability in the RADIUS authentication module of Cisco Policy Suite could allow an unauthenticated, remote attacker to determine…
CVE-2013-3469 — CVSS 5.0 (medium): Cisco Mobility Services Engine does not properly set up the Oracle SSL service, which allows remote attackers to obtain an unauthenticated…
CVE-2015-4263 — CVSS 4.0 (medium): The Control and Provisioning functionality in Cisco Mobility Services Engine (MSE) 10.0(0.1) allows remote authenticated users to obtain…
CVE-2015-0673 — CVSS 4.0 (medium): Cisco Mobility Services Engine (MSE) 8.0(110.0) allows remote authenticated users to discover the passwords of arbitrary users by (1)…