|
277421
|
- |
|
cisco
|
unified_computing_system_central_software
|
The web framework in Cisco UCS Central Software 1.3(0.99) allows remote attackers to read arbitrary files via a crafted HTTP request, aka Bug ID CSCuu41377.
|
CWE-20
Improper Input Validation
|
CVE-2015-4286
|
2024-11-21 11:30 |
2015-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277422
|
- |
|
cisco
|
web_security_appliance
email_security_appliance
content_security_management_appliance
|
The LDAP implementation on the Cisco Web Security Appliance (WSA) 8.5.0-000, Email Security Appliance (ESA) 8.5.7-042, and Content Security Management Appliance (SMA) 8.3.6-048 does not verify X.509 …
|
CWE-310
Cryptographic Issues
|
CVE-2015-4288
|
2024-11-21 11:30 |
2015-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277423
|
- |
|
cisco
|
firepower_extensible_operating_system
|
Cisco Firepower Extensible Operating System 1.1(1.86) on Firepower 9000 devices allows remote attackers to bypass intended access restrictions and obtain sensitive device information by visiting an u…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4287
|
2024-11-21 11:30 |
2015-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277424
|
- |
|
cisco
|
unified_meetingplace_web_conferencing
|
The password-change feature in Cisco Unified MeetingPlace Web Conferencing before 8.5(5) MR3 and 8.6 before 8.6(2) does not check the session ID or require entry of the current password, which allows…
|
CWE-255
Credentials Management
|
CVE-2015-4262
|
2024-11-21 11:30 |
2015-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277425
|
- |
|
cisco
|
nx-os
application_policy_infrastructure_controller_\(apic\)
|
Cisco Application Policy Infrastructure Controller (APIC) devices with software before 1.0(3o) and 1.1 before 1.1(1j) and Nexus 9000 ACI devices with software before 11.0(4o) and 11.1 before 11.1(1j)…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4235
|
2024-11-21 11:30 |
2015-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277426
|
- |
|
cisco
|
ios_xr
|
The Local Packet Transport Services (LPTS) implementation in Cisco IOS XR 5.1.2, 5.1.3, 5.2.1, and 5.2.2 on ASR9k devices makes incorrect decisions about the opening of TCP and UDP ports during the p…
|
CWE-399
Resource Management Errors
|
CVE-2015-4285
|
2024-11-21 11:30 |
2015-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277427
|
- |
|
cisco
|
ios_xr
|
The Concurrent Data Management Replication process in Cisco IOS XR 5.3.0 on ASR 9000 devices allows remote attackers to cause a denial of service (BGP process reload) via malformed BGPv4 packets, aka…
|
CWE-20
Improper Input Validation
|
CVE-2015-4284
|
2024-11-21 11:30 |
2015-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277428
|
- |
|
cisco
|
webex_meetings_server
|
Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server 2.5 MR1 allows remote attackers to hijack the authentication of arbitrary users, aka Bug IDs CSCus56150 and CSCus56146.
|
CWE-352
Origin Validation Error
|
CVE-2015-4281
|
2024-11-21 11:30 |
2015-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277429
|
- |
|
cisco
|
videoscape_policy_resource_manager
|
Cisco Videoscape Policy Resource Manager (PRM) 3.5.4 allows remote attackers to cause a denial of service (CPU and memory consumption, and TCP service outage) via (1) a SYN flood or (2) another type …
|
CWE-399
Resource Management Errors
|
CVE-2015-4283
|
2024-11-21 11:30 |
2015-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277430
|
- |
|
cisco
|
unified_computing_system
|
The Manager component in Cisco Unified Computing System (UCS) 2.2(3b) on B Blade Server devices allows local users to gain privileges for executing arbitrary CLI commands by leveraging access to the …
|
CWE-78
OS Command
|
CVE-2015-4279
|
2024-11-21 11:30 |
2015-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
