|
266291
|
8.8 |
HIGH
Network
|
cisco
|
firepower_management_center
|
The web-based GUI in Cisco Firepower Management Center 4.x and 5.x before 5.3.0.3, 5.3.1.x before 5.3.1.2, and 5.4.x before 5.4.0.1 and Cisco Adaptive Security Appliance (ASA) Software on 5500-X devi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-1458
|
2024-11-21 11:46 |
2016-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266292
|
8.8 |
HIGH
Network
|
cisco
|
firepower_management_center
|
The web-based GUI in Cisco Firepower Management Center 4.x and 5.x before 5.3.1.2 and 5.4.x before 5.4.0.1 and Cisco Adaptive Security Appliance (ASA) Software on 5500-X devices with FirePOWER Servic…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-1457
|
2024-11-21 11:46 |
2016-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266293
|
8.8 |
HIGH
Network
|
cisco
|
application_policy_infrastructure_controller_enterprise_module
|
The Grapevine update process in Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) 1.0 allows remote authenticated users to execute arbitrary commands as root via a crafte…
|
CWE-20
Improper Input Validation
|
CVE-2016-1365
|
2024-11-21 11:46 |
2016-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266294
|
7.5 |
HIGH
Network
|
cisco
|
ios
|
Cisco IOS 15.5(3)S3, 15.6(1)S2, 15.6(2)S1, and 15.6(2)T1 does not properly dequeue invalid NTP packets, which allows remote attackers to cause a denial of service (interface wedge) by sending many cr…
|
CWE-20
Improper Input Validation
|
CVE-2016-1478
|
2024-11-21 11:46 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266295
|
4.3 |
MEDIUM
Network
|
cisco
|
prime_infrastructure
|
Cisco Prime Infrastructure 2.2(2) does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks via a cra…
|
CWE-284
Improper Access Control
|
CVE-2016-1474
|
2024-11-21 11:46 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266296
|
8.8 |
HIGH
Network
|
cisco
|
telepresence_video_communication_server
|
The administrative web interface in Cisco TelePresence Video Communication Server Expressway X8.5.2 allows remote authenticated users to execute arbitrary commands via crafted fields, aka Bug ID CSCu…
|
CWE-78
OS Command
|
CVE-2016-1468
|
2024-11-21 11:46 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266297
|
7.5 |
HIGH
Network
|
cisco
|
unified_communications_manager_im_and_presence_service
|
Cisco Unified Communications Manager IM and Presence Service 9.1(1) SU6, 9.1(1) SU6a, 9.1(1) SU7, 10.5(2) SU2, 10.5(2) SU2a, 11.0(1) SU1, and 11.5(1) allows remote attackers to cause a denial of serv…
|
CWE-399
Resource Management Errors
|
CVE-2016-1466
|
2024-11-21 11:46 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266298
|
8.8 |
HIGH
Network
|
cisco
|
rv180_vpn_router_firmware
rv180w_vpn_router_firmware
|
Cisco RV180 and RV180W devices allow remote authenticated users to execute arbitrary commands as root via a crafted HTTP request, aka Bug ID CSCuz48592.
|
CWE-20
Improper Input Validation
|
CVE-2016-1430
|
2024-11-21 11:46 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266299
|
7.5 |
HIGH
Network
|
cisco
|
rv180_vpn_router_firmware
rv180w_wireless-n_multifunction_vpn_router_firmware
|
Directory traversal vulnerability in the web interface on Cisco RV180 and RV180W devices allows remote attackers to read arbitrary files via a crafted HTTP request, aka Bug ID CSCuz43023.
|
CWE-22
Path Traversal
|
CVE-2016-1429
|
2024-11-21 11:46 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266300
|
7.8 |
HIGH
Local
|
juniper
|
junos
|
Juniper Junos OS before 12.1X46-D50 on SRX Series devices reverts to "safe mode" authentication and allows root CLI logins without a password after a failed upgrade to 12.1X46, which might allow loca…
|
CWE-287
Improper Authentication
|
CVE-2016-1278
|
2024-11-21 11:46 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
