|
287571
|
- |
|
cisco
|
ios_xr
|
Cisco IOS XR does not properly throttle ICMPv6 redirect packets, which allows remote attackers to cause a denial of service (IPv4 and IPv6 transit outage) via crafted redirect messages, aka Bug ID CS…
|
CWE-20
Improper Input Validation
|
CVE-2014-2144
|
2024-11-21 11:05 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287572
|
- |
|
ca
|
erwin_web_portal
|
Multiple directory traversal vulnerabilities in CA ERwin Web Portal 9.5 allow remote attackers to obtain sensitive information, bypass intended access restrictions, cause a denial of service, or poss…
|
CWE-22
Path Traversal
|
CVE-2014-2210
|
2024-11-21 11:05 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287573
|
- |
|
cisco
|
ios
ios_xe
|
The IKE implementation in Cisco IOS 15.4(1)T and earlier and IOS XE allows remote attackers to cause a denial of service (security-association drop) via crafted Main Mode packets, aka Bug ID CSCun310…
|
NVD-CWE-noinfo
|
CVE-2014-2143
|
2024-11-21 11:05 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287574
|
- |
|
cisco
|
emergency_responder
|
Multiple open redirect vulnerabilities in Cisco Emergency Responder (ER) 8.6 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified p…
|
CWE-20
Improper Input Validation
|
CVE-2014-2117
|
2024-11-21 11:05 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287575
|
- |
|
cisco
|
emergency_responder
|
Cisco Emergency Responder (ER) 8.6 and earlier allows remote attackers to inject web pages and modify dynamic content via unspecified parameters, aka Bug ID CSCun37882.
|
CWE-20
Improper Input Validation
|
CVE-2014-2116
|
2024-11-21 11:05 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287576
|
- |
|
cisco
|
emergency_responder
|
Multiple cross-site request forgery (CSRF) vulnerabilities in CERUserServlet pages in Cisco Emergency Responder (ER) 8.6 and earlier allow remote attackers to hijack the authentication of arbitrary u…
|
CWE-352
Origin Validation Error
|
CVE-2014-2115
|
2024-11-21 11:05 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287577
|
- |
|
cisco
|
emergency_responder
|
Cross-site scripting (XSS) vulnerability in UserServlet in Cisco Emergency Responder (ER) 8.6 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, …
|
CWE-79
Cross-site Scripting
|
CVE-2014-2114
|
2024-11-21 11:05 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287578
|
- |
|
cisco
|
security_manager
|
CRLF injection vulnerability in the web framework in Cisco Security Manager 4.2 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL,…
|
CWE-20
Improper Input Validation
|
CVE-2014-2138
|
2024-11-21 11:05 |
2014-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287579
|
- |
|
cisco
|
web_security_appliance
web_security_virtual_appliance
|
CRLF injection vulnerability in the web framework in Cisco Web Security Appliance (WSA) 7.7 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct redirection attacks via a …
|
CWE-20
Improper Input Validation
|
CVE-2014-2137
|
2024-11-21 11:05 |
2014-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287580
|
- |
|
cisco
|
unity_connection
|
Cross-site scripting (XSS) vulnerability in the Web Inbox in Cisco Unity Connection 8.6(2a)SU3 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter,…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2125
|
2024-11-21 11:05 |
2014-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
