CVE-2018-0107 — CVSS 8.8 (high): A vulnerability in the web framework of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to execute unwanted…
CVE-2019-1874 — CVSS 8.8 (high): A vulnerability in the web-based management interface of Cisco Prime Service Catalog Software could allow an unauthenticated, remote…
CVE-2015-0581 — CVSS 7.5 (high): The XML parser in Cisco Prime Service Catalog before 10.1 allows remote authenticated users to read arbitrary files or cause a denial of…
CVE-2015-6395 — CVSS 6.5 (medium): Cisco Prime Service Catalog 10.0, 10.0(R2), 10.1, and 11.0 does not properly restrict access to web pages, which allows remote attackers to…
CVE-2015-6350 — CVSS 6.5 (medium): SQL injection vulnerability in the web framework in Cisco Prime Service Catalog 11.0 allows remote authenticated users to execute arbitrary…
CVE-2018-0285 — CVSS 6.5 (medium): A vulnerability in service logging for Cisco Prime Service Catalog could allow an authenticated, remote attacker to deny service to the…
CVE-2017-12364 — CVSS 6.5 (medium): A SQL Injection vulnerability in the web framework of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to…
CVE-2016-1462 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Prime Service Catalog (PSC) 11.0 allows remote…
CVE-2017-3866 — CVSS 6.1 (medium): A vulnerability in the web framework code of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to conduct a…
CVE-2018-0200 — CVSS 6.1 (medium): A vulnerability in the web-based interface of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to conduct a…
CVE-2018-15451 — CVSS 5.4 (medium): A vulnerability in the web-based management interface of Cisco Prime Service Catalog could allow an authenticated, remote attacker to…
CVE-2017-3810 — CVSS 5.4 (medium): A vulnerability in the web framework of Cisco Prime Service Catalog could allow an authenticated, remote attacker to conduct a web URL…
CVE-2019-1875 — CVSS 4.8 (medium): A vulnerability in the web-based management interface of Cisco Prime Service Catalog could allow an authenticated, remote attacker to…
CVE-2015-4190 — CVSS 4.3 (medium): Cisco Cloud Portal in Cisco Prime Service Catalog 9.4.1_vortex on Cloud Portal appliances allows man-in-the-middle attackers to modify data…
CVE-2022-20680 — CVSS 4.3 (medium): A vulnerability in the web-based management interface of Cisco Prime Service Catalog could allow an authenticated, remote attacker to…