{"vulnerability": "CVE-2019-15993", "sightings": [{"uuid": "c687f65e-f316-475c-9063-6fe0e44dc772", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-15993", "type": "seen", "source": "https://t.me/information_security_channel/34585", "content": "Cisco published a security advisory that fixes multiple vulnerabilities with Cisco Small Business Switches. The vulnerabilities allow an unauthenticated remote attacker to access sensitive information with the devices and cause DoS conditions. CVE-2019-15993 \u2013 Information Disclosure Vulnerability The vulnerability is due to a lack of security validation with authentication controls for accessing the web UI. [\u2026]\nThe post Cisco Small Business Switches Vulnerabilities allows Attackers to Access Sensitive Information and Cause DoS (https://gbhackers.com/cisco-small-business-switches-2/) appeared first on GBHackers On Security (https://gbhackers.com/).", "creation_timestamp": "2020-01-31T05:04:06.000000Z"}, {"uuid": "8303ed14-36f9-484d-b5b0-d9f94750276d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-15993", "type": "seen", "source": "https://t.me/cibsecurity/14835", "content": "ATENTION\u203c New - CVE-2019-15993\n\nA vulnerability in the web UI of Cisco Small Business Switches could allow an unauthenticated, remote attacker to access sensitive device information. The vulnerability exists because the software lacks proper authentication controls to information accessible from the web UI. An attacker could exploit this vulnerability by sending a malicious HTTP request to the web UI of an affected device. A successful exploit could allow the attacker to access sensitive device information, which includes configuration files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-09-23T07:55:34.000000Z"}]}