|
277461
|
- |
|
cisco
|
unified_communications_manager_im_and_presence_service
|
Cross-site scripting (XSS) vulnerability in Cisco IM and Presence Service before 10.5 MR1 allows remote attackers to inject arbitrary web script or HTML by constructing a crafted URL that leverages i…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4294
|
2024-11-21 11:30 |
2015-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277462
|
- |
|
cisco
|
prime_central_for_hosted_collaboration_solution_assurance
|
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Prime Central for Hosted Collaboration Solution (PC4HCS) 10.6(2) allows remote attackers to inject arbitrary web script o…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4292
|
2024-11-21 11:30 |
2015-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277463
|
- |
|
cisco
|
ios_xe
|
Cisco IOS XE 2.x before 2.4.3 and 2.5.x before 2.5.1 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted series of fragmented (1…
|
CWE-399
Resource Management Errors
|
CVE-2015-4291
|
2024-11-21 11:30 |
2015-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277464
|
- |
|
cisco
|
anyconnect_secure_mobility_client
|
Directory traversal vulnerability in Cisco AnyConnect Secure Mobility Client 4.0(2049) allows remote head-end systems to write to arbitrary files via a crafted configuration attribute, aka Bug ID CSC…
|
CWE-22
Path Traversal
|
CVE-2015-4289
|
2024-11-21 11:30 |
2015-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277465
|
- |
|
cisco
|
ios_xe
|
The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU consumption or packet loss) via fragmented (1) IPv4 or (2) IPv6 packet…
|
CWE-399
Resource Management Errors
|
CVE-2015-4293
|
2024-11-21 11:30 |
2015-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277466
|
- |
|
cisco
|
anyconnect_secure_mobility_client
|
The kernel extension in Cisco AnyConnect Secure Mobility Client 4.0(2049) on OS X allows local users to cause a denial of service (panic) via vectors involving contiguous memory locations, aka Bug ID…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4290
|
2024-11-21 11:30 |
2015-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277467
|
- |
|
cisco
|
unified_computing_system_central_software
|
The web framework in Cisco UCS Central Software 1.3(0.99) allows remote attackers to read arbitrary files via a crafted HTTP request, aka Bug ID CSCuu41377.
|
CWE-20
Improper Input Validation
|
CVE-2015-4286
|
2024-11-21 11:30 |
2015-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277468
|
- |
|
cisco
|
web_security_appliance
email_security_appliance
content_security_management_appliance
|
The LDAP implementation on the Cisco Web Security Appliance (WSA) 8.5.0-000, Email Security Appliance (ESA) 8.5.7-042, and Content Security Management Appliance (SMA) 8.3.6-048 does not verify X.509 …
|
CWE-310
Cryptographic Issues
|
CVE-2015-4288
|
2024-11-21 11:30 |
2015-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277469
|
- |
|
cisco
|
firepower_extensible_operating_system
|
Cisco Firepower Extensible Operating System 1.1(1.86) on Firepower 9000 devices allows remote attackers to bypass intended access restrictions and obtain sensitive device information by visiting an u…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4287
|
2024-11-21 11:30 |
2015-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277470
|
- |
|
cisco
|
unified_meetingplace_web_conferencing
|
The password-change feature in Cisco Unified MeetingPlace Web Conferencing before 8.5(5) MR3 and 8.6 before 8.6(2) does not check the session ID or require entry of the current password, which allows…
|
CWE-255
Credentials Management
|
CVE-2015-4262
|
2024-11-21 11:30 |
2015-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
