Every CVE whose affected-product data names Cisco Umbrella, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2018-0435 — CVSS 9.1 (critical): A vulnerability in the Cisco Umbrella API could allow an authenticated, remote attacker to view and modify data across their organization…
CVE-2019-1807 — CVSS 7.6 (high): A vulnerability in the session management functionality of the web UI for the Cisco Umbrella Dashboard could allow an authenticated, remote…
CVE-2021-1474 — CVSS 6.5 (medium): Multiple vulnerabilities in the Admin audit log export feature and Scheduled Reports feature of Cisco Umbrella could allow an…
CVE-2021-1475 — CVSS 6.5 (medium): Multiple vulnerabilities in the Admin audit log export feature and Scheduled Reports feature of Cisco Umbrella could allow an…
CVE-2019-1792 — CVSS 6.1 (medium): A vulnerability in the URL block page of Cisco Umbrella could allow an unauthenticated, remote attacker to conduct a cross-site scripting…
CVE-2020-3337 — CVSS 6.1 (medium): A vulnerability in the web server of Cisco Umbrella could allow an unauthenticated, remote attacker to redirect a user to an undesired web…
CVE-2021-1350 — CVSS 5.3 (medium): A vulnerability in the web UI of Cisco Umbrella could allow an unauthenticated, remote attacker to negatively affect the performance of…
CVE-2022-20969 — CVSS 4.8 (medium): A vulnerability in multiple management dashboard pages of Cisco Umbrella could allow an authenticated, remote attacker to conduct a…
CVE-2020-3246 — CVSS 4.3 (medium): A vulnerability in the web server of Cisco Umbrella could allow an unauthenticated, remote attacker to perform a carriage return line feed…
CVE-2021-40126 — CVSS 4.3 (medium): A vulnerability in the web-based dashboard of Cisco Umbrella could allow an authenticated, remote attacker to perform an email enumeration…