|
268651
|
- |
|
cisco
|
firesight_system_software
|
Cisco FireSIGHT Management Center allows remote attackers to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka …
|
CWE-254
7PK - Security Features
|
CVE-2015-6427
|
2024-11-21 11:34 |
2015-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268652
|
- |
|
cisco
|
prime_network_services_controller
|
Cisco Prime Network Services Controller 3.0 allows local users to bypass intended access restrictions and execute arbitrary commands via additional parameters to an unspecified command, aka Bug ID CS…
|
CWE-20
Improper Input Validation
|
CVE-2015-6426
|
2024-11-21 11:34 |
2015-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268653
|
- |
|
cisco
|
application_policy_infrastructure_controller
|
The boot manager in Cisco Application Policy Infrastructure Controller (APIC) 1.1(0.920a) allows local users to bypass intended access restrictions and obtain single-user-mode root access via unspeci…
|
CWE-255
Credentials Management
|
CVE-2015-6424
|
2024-11-21 11:34 |
2015-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268654
|
- |
|
cisco
|
unified_communications_manager
|
The WebApplications Identity Management subsystem in Cisco Unified Communications Manager 10.5(0.98000.88) allows remote attackers to cause a denial of service (subsystem outage) via invalid session …
|
CWE-399
Resource Management Errors
|
CVE-2015-6425
|
2024-11-21 11:34 |
2015-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268655
|
- |
|
apache
|
commons_collections
|
Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Device…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2015-6420
|
2024-11-21 11:34 |
2015-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268656
|
- |
|
cisco
|
firepower_management_center
|
Cisco FirePOWER Management Center 5.4.1.3, 6.0.0, and 6.0.1 provides verbose responses to requests for help files, which allows remote attackers to obtain potentially sensitive version information by…
|
CWE-200
Information Exposure
|
CVE-2015-6411
|
2024-11-21 11:34 |
2015-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268657
|
- |
|
cisco
|
hosted_collaboration_solution
|
Cisco Hosted Collaboration Mediation Fulfillment 10.6(3) does not use RBAC, which allows remote authenticated users to obtain sensitive credential information by leveraging admin access and making SO…
|
CWE-200
Information Exposure
|
CVE-2015-6404
|
2024-11-21 11:34 |
2015-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268658
|
- |
|
cisco
|
spa500_firmware
spa300_firmware
|
The TFTP implementation on Cisco Small Business SPA30x, SPA50x, SPA51x phones 7.5.7 improperly validates firmware-image file integrity, which allows local users to load a Trojan horse image by levera…
|
CWE-20
Improper Input Validation
|
CVE-2015-6403
|
2024-11-21 11:34 |
2015-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268659
|
- |
|
cisco
|
integrated_management_controller_supervisor
|
The Supervisor 1.0.0.0 and 1.0.0.1 in Cisco Integrated Management Controller (IMC) before 2.0(9) allows remote authenticated users to cause a denial of service (IP interface outage) via crafted param…
|
CWE-399
Resource Management Errors
|
CVE-2015-6399
|
2024-11-21 11:34 |
2015-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268660
|
- |
|
cisco
|
ios
|
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS 15.3(3)S0.1 on ASR devices mishandles internal tables, which allows remote attackers to cause a denial of service (m…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-6359
|
2024-11-21 11:34 |
2015-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
