|
265361
|
5.9 |
MEDIUM
Network
|
ibm
|
bigfix_inventory
|
IBM BigFix Inventory 9.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 118851.
|
CWE-255
Credentials Management
|
CVE-2016-8962
|
2024-11-21 12:00 |
2017-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265362
|
5.6 |
MEDIUM
Network
|
ibm
|
maximo_asset_management
|
IBM Maximo Asset Management 7.1, 7.5 and 7.6 could allow a remote attacker to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit th…
|
CWE-79
Cross-site Scripting
|
CVE-2016-8924
|
2024-11-21 12:00 |
2017-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265363
|
4.3 |
MEDIUM
Network
|
ibm
|
curam_social_program_management
|
IBM Curam Social Program Management 5.2, 6.0, and 7.0 contains a vulnerability that would allow an authorized user to obtain sensitive information from the profile of a higher privileged user that th…
|
CWE-200
Information Exposure
|
CVE-2016-8923
|
2024-11-21 12:00 |
2017-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265364
|
5.4 |
MEDIUM
Network
|
ibm
|
tivoli_application_dependency_discovery_manager
|
IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering…
|
CWE-79
Cross-site Scripting
|
CVE-2016-8927
|
2024-11-21 12:00 |
2017-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265365
|
4.3 |
MEDIUM
Network
|
ibm
|
tivoli_application_dependency_discovery_manager
|
IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 could allow a remote attacker to read system files or data that is restricted to authorized users. IBM X-Force ID: 118539.
|
CWE-200
Information Exposure
|
CVE-2016-8926
|
2024-11-21 12:00 |
2017-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265366
|
6.5 |
MEDIUM
Network
|
ibm
|
tivoli_application_dependency_discovery_manager
|
IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 could allow a remote attacker to include arbitrary files which could allow the attacker to read any file on the system. IBM X-Force I…
|
CWE-200
Information Exposure
|
CVE-2016-8925
|
2024-11-21 12:00 |
2017-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265367
|
6.7 |
MEDIUM
Local
|
cisco
|
mobility_services_engine
|
A vulnerability in the CLI command parser of the Cisco Mobility Express 2800 and 3800 Series Wireless LAN Controllers could allow an authenticated, local attacker to obtain access to the underlying o…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-9197
|
2024-11-21 12:00 |
2017-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265368
|
5.3 |
MEDIUM
Network
|
cisco
|
wireless_lan_controller
|
A vulnerability in RADIUS Change of Authorization (CoA) request processing in the Cisco Wireless LAN Controller (WLC) could allow an unauthenticated, remote attacker to cause a denial of service (DoS…
|
CWE-399
Resource Management Errors
|
CVE-2016-9195
|
2024-11-21 12:00 |
2017-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265369
|
6.7 |
MEDIUM
Local
|
cisco
|
aironet_access_point
|
A vulnerability in login authentication management in Cisco Aironet 1800, 2800, and 3800 Series Access Point platforms could allow an authenticated, local attacker to gain unrestricted root access to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-9196
|
2024-11-21 12:00 |
2017-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265370
|
7.5 |
HIGH
Network
|
cisco
|
wireless_lan_controller_firmware
wireless_lan_controller_software
|
A vulnerability with IPv6 UDP ingress packet processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause an unexpected reload of the device. Th…
|
CWE-20
Improper Input Validation
|
CVE-2016-9219
|
2024-11-21 12:00 |
2017-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
