|
274941
|
- |
|
cisco
|
unified_communications_domain_manager
|
The web framework in Cisco Unified Communications Domain Manager 8.1(4)ER1 allows remote attackers to obtain sensitive information by visiting a bvsmweb URL, aka Bug ID CSCuq22589.
|
CWE-200
Information Exposure
|
CVE-2015-4229
|
2024-11-21 11:30 |
2015-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274942
|
- |
|
cisco
|
headend_system_release
|
Memory leak in Cisco Headend System Release allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, aka Bug ID CSCus91838.
|
CWE-399
Resource Management Errors
|
CVE-2015-4227
|
2024-11-21 11:30 |
2015-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274943
|
- |
|
siemens
|
climatix_bacnet\/ip
|
Cross-site scripting (XSS) vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware before 10.34 allows remote attackers to inject arbitrary web…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4174
|
2024-11-21 11:30 |
2015-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274944
|
- |
|
cisco
|
nx-os
|
Cisco Application Policy Infrastructure Controller (APIC) 1.0(1.110a) and 1.0(1e) on Nexus 9000 devices does not properly implement RBAC health scoring, which allows remote authenticated users to obt…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4225
|
2024-11-21 11:30 |
2015-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274945
|
- |
|
cisco
|
ios
|
Race condition in the IPv6-to-IPv4 functionality in Cisco IOS 15.3S in the Performance Routing Engine (PRE) module on UBR devices allows remote attackers to cause a denial of service (NULL pointer fr…
|
CWE-362
Race Condition
|
CVE-2015-4199
|
2024-11-21 11:30 |
2015-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274946
|
- |
|
cisco
|
wireless_lan_controller_software
|
Cisco Wireless LAN Controller (WLC) devices with software 7.0(240.0) allow local users to execute arbitrary OS commands in a privileged context via crafted CLI commands, aka Bug ID CSCuj39474.
|
CWE-78
OS Command
|
CVE-2015-4224
|
2024-11-21 11:30 |
2015-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274947
|
- |
|
cisco
|
unified_communications_manager_im_and_presence_service
|
SQL injection vulnerability in Cisco Unified Communications Manager IM and Presence Service 9.1(1) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug…
|
CWE-89
SQL Injection
|
CVE-2015-4222
|
2024-11-21 11:30 |
2015-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274948
|
- |
|
cisco
|
unified_communications_manager_im_and_presence_service
|
Cisco Unified Communications Manager IM and Presence Service 9.1(1) does not properly restrict access to encrypted passwords, which allows remote attackers to determine cleartext passwords, and conse…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4221
|
2024-11-21 11:30 |
2015-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274949
|
- |
|
cisco
|
email_security_virtual_appliance
content_security_management_virtual_appliance
web_security_virtual_appliance
|
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the…
|
CWE-310
CWE-200
Cryptographic Issues
Information Exposure
|
CVE-2015-4217
|
2024-11-21 11:30 |
2015-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274950
|
- |
|
cisco
|
email_security_virtual_appliance
content_security_management_virtual_appliance
web_security_virtual_appliance
|
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the…
|
CWE-200
Information Exposure
|
CVE-2015-4216
|
2024-11-21 11:30 |
2015-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
