|
270451
|
- |
|
cisco
|
firesight_system_software
|
Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSIGHT System Software 5.3.1.5 and 6.0.0 allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug IDs C…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4270
|
2024-11-21 11:30 |
2015-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270452
|
- |
|
cisco
|
identity_services_engine_software
|
Multiple cross-site scripting (XSS) vulnerabilities in the Infra Admin UI in Cisco Identity Services Engine (ISE) 1.2(1.198) and 1.3(0.876) allow remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4268
|
2024-11-21 11:30 |
2015-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270453
|
- |
|
cisco
|
unified_communications_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in the ccmivr page in Cisco Unified Communications Manager (formerly CallManager) 10.5(2.10000.5) allow remote attackers to inject arbitrary web sc…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4272
|
2024-11-21 11:30 |
2015-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270454
|
- |
|
cisco
|
unified_communications_manager
|
The Tomcat throttling feature in Cisco Unified Communications Manager 10.5(1.99995.9) allows remote authenticated users to cause a denial of service (management outage) by sending many requests, aka …
|
CWE-399
Resource Management Errors
|
CVE-2015-4269
|
2024-11-21 11:30 |
2015-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270455
|
- |
|
cisco
|
mobility_services_engine
|
The Control and Provisioning functionality in Cisco Mobility Services Engine (MSE) 10.0(0.1) allows remote authenticated users to obtain sensitive information by reading log files, aka Bug ID CSCut36…
|
CWE-200
Information Exposure
|
CVE-2015-4263
|
2024-11-21 11:30 |
2015-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270456
|
- |
|
cisco
|
email_security_appliance
email_security_appliance_firmware
|
Cisco AsyncOS on Email Security Appliance (ESA) devices with software 8.5.6-073, 8.5.6-074, and 9.0.0-461, when clustering is enabled, allows remote attackers to cause a denial of service (clustering…
|
CWE-399
Resource Management Errors
|
CVE-2015-4236
|
2024-11-21 11:30 |
2015-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270457
|
- |
|
cisco
|
telepresence_advanced_media_gateway
|
Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence Advanced Media Gateway devices with software 1.1(1.40) allows remote attackers to hijack the authentication of arbitrary users, a…
|
CWE-352
Origin Validation Error
|
CVE-2015-4254
|
2024-11-21 11:30 |
2015-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270458
|
- |
|
cisco
|
unified_computing_system
|
The Integrated Management Controller on Cisco Unified Computing System (UCS) C servers with software 1.5(3) and 1.6(0.16) has a default SSL certificate, which makes it easier for man-in-the-middle at…
|
CWE-310
Cryptographic Issues
|
CVE-2015-4259
|
2024-11-21 11:30 |
2015-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270459
|
- |
|
cisco
|
hosted_collaboration_solution
|
Cross-site scripting (XSS) vulnerability in Cisco Hosted Collaboration Solution 10.6(1) allows remote attackers to inject arbitrary web script or HTML via a crafted value in a URL, aka Bug ID CSCuu14…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4260
|
2024-11-21 11:30 |
2015-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270460
|
- |
|
cisco
|
asr_5000_series_software
|
The boot implementation on Cisco ASR 5000 and 5500 devices with software 14.0 allows local users to execute arbitrary Linux commands by leveraging administrative privileges for storage of these comma…
|
CWE-78
OS Command
|
CVE-2015-4244
|
2024-11-21 11:30 |
2015-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
