CVE-2021-34744

MEDIUM Year: 2021
CVSS v3 Score
4.9
Medium
CVSS v2 Score
4.0
Medium
Weakness Type
CWE-540
View all →

Vulnerability Description

Multiple vulnerabilities in Cisco Business 220 Series Smart Switches firmware could allow an attacker with Administrator privileges to access sensitive login credentials or reconfigure the passwords on the user account. For more information about these vulnerabilities, see the Details section of this advisory.

Related Vulnerabilities

CVE-2023-23448

MEDIUM
CVSS:5.3(Medium)

Inclusion of Sensitive Information in Source Code in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215, 1100216, 1120114, 1120116, 1122524, 1122526 allows a remote attacker to gain informati...

CWE-5402023

CVE-2023-30802

MEDIUM
CVSS:5.3(Medium)

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. A remote and unauthenticated attacker can obtain PHP source code by sending an HTT...

CWE-5402023

CVE-2024-35144

MEDIUM
CVSS:5.3(Medium)

IBM Maximo Application Suite 8.10, 8.11, and 9.0 - Monitor Component stores source code on the web server that could aid in further attacks against the system.

CWE-5402024

CVE-2024-9596

MEDIUM
CVSS:5.3(Medium)

An issue has been discovered in GitLab EE affecting all versions starting from 16.6 prior to 17.2.9, from 17.3 prior to 17.3.5, and from 17.4 prior to 17.4.2. It was possible for an unauthenticated at...

CWE-5402024

CVE-2023-35013

MEDIUM
CVSS:4.4(Medium)

IBM Security Verify Governance 10.0, Identity Manager could allow a local privileged user to obtain sensitive information from source code. IBM X-Force ID: 257769.

CWE-5402023

CVE-2021-28805

MEDIUM
CVSS:5.5(Medium)

Inclusion of sensitive information in the source code has been reported to affect certain QNAP switches running QSS. If exploited, this vulnerability allows attackers to read application data. This is...

CWE-5402021