|
273421
|
- |
|
cisco
|
emergency_responder
|
Cross-site request forgery (CSRF) vulnerability in Cisco Emergency Responder 10.5(1) and 10.5(1a) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuv26501.
|
CWE-352
Origin Validation Error
|
CVE-2015-6405
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273422
|
- |
|
cisco
|
emergency_responder
|
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Emergency Responder 10.5(1a) allow remote attackers to inject arbitrary web script or HTML via unspecified fields, aka Bug ID CSCuv25547.
|
CWE-79
Cross-site Scripting
|
CVE-2015-6400
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273423
|
- |
|
cisco
|
prime_collaboration_assurance
|
Cisco Prime Collaboration Assurance before 11.0 has a hardcoded cmuser account, which allows remote attackers to obtain access by establishing an SSH session and leveraging knowledge of this account'…
|
CWE-287
Improper Authentication
|
CVE-2015-6389
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273424
|
- |
|
cisco
|
dpc3939_wireless_residential_voice_gateway_firmware
|
The administrative web interface on Cisco DPC3939 (XB3) devices with firmware 121109aCMCST allows remote authenticated users to execute arbitrary commands via unspecified fields, aka Bug ID CSCuw8617…
|
CWE-20
Improper Input Validation
|
CVE-2015-6361
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273425
|
- |
|
cisco
|
firesight_system_software
|
Cisco FireSIGHT Management Center with software 4.10.3, 5.2.0, 5.3.0, 5.3.1, and 5.4.0 allows remote authenticated users to read arbitrary files via a crafted GET request, aka Bug ID CSCur25410.
|
CWE-200
Information Exposure
|
CVE-2015-6419
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273426
|
- |
|
cisco
|
unified_computing_system
|
Cisco Unified Computing System (UCS) 2.2(3f)A on Fabric Interconnect 6200 devices allows remote attackers to cause a denial of service (CPU consumption or device outage) via a SYN flood on the SSH po…
|
CWE-399
Resource Management Errors
|
CVE-2015-6415
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273427
|
- |
|
cisco
|
unity_connection
|
Cross-site request forgery (CSRF) vulnerability in Cisco Unity Connection 11.5(0.98) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCux24578.
|
CWE-352
Origin Validation Error
|
CVE-2015-6408
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273428
|
- |
|
cisco
|
videoscape_distribution_suite_service_manager
|
Cisco Videoscape Distribution Suite Service Manager (VDS-SM) 3.4.0 and earlier does not always use RBAC for backend database access, which allows remote authenticated users to read or write to databa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6417
|
2024-11-21 11:34 |
2015-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273429
|
- |
|
cisco
|
prime_service_catalog
|
Cisco Prime Service Catalog 10.0, 10.0(R2), 10.1, and 11.0 does not properly restrict access to web pages, which allows remote attackers to modify the configuration via a direct request, aka Bug ID C…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6395
|
2024-11-21 11:34 |
2015-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273430
|
- |
|
microsoft
|
excel_viewer
office_compatibility_pack
excel
|
Microsoft Excel 2007 SP3, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulne…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-6177
|
2024-11-21 11:34 |
2015-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
