|
254961
|
6.1 |
MEDIUM
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in the web-based UI of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to execute a cross-frame scripting (XFS) attack. The vulnerability exists b…
|
CWE-79
Cross-site Scripting
|
CVE-2017-12258
|
2024-11-21 12:09 |
2017-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254962
|
6.1 |
MEDIUM
Network
|
cisco
|
webex_meetings_server
|
A vulnerability in the web framework of Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface …
|
CWE-79
Cross-site Scripting
|
CVE-2017-12257
|
2024-11-21 12:09 |
2017-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254963
|
6.5 |
MEDIUM
Network
|
cisco
|
wide_area_application_services
|
A vulnerability in the Akamai Connect feature of Cisco Wide Area Application Services (WAAS) Appliances could allow an unauthenticated, remote attacker to cause a denial-of-service (DoS) condition on…
|
NVD-CWE-noinfo
|
CVE-2017-12256
|
2024-11-21 12:09 |
2017-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254964
|
8.6 |
HIGH
Network
|
cisco
|
adaptive_security_appliance_software
|
A vulnerability in the implementation of the direct authentication feature in Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause an affected dev…
|
CWE-20
Improper Input Validation
|
CVE-2017-12246
|
2024-11-21 12:09 |
2017-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254965
|
8.6 |
HIGH
Network
|
cisco
|
firepower_management_center
|
A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause depletion of system memory, aka a Firepower Detect…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-12245
|
2024-11-21 12:09 |
2017-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254966
|
8.6 |
HIGH
Network
|
cisco
|
firepower_management_center
|
A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause high CPU utilization or to cause a denial …
|
CWE-20
Improper Input Validation
|
CVE-2017-12244
|
2024-11-21 12:09 |
2017-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254967
|
9.8 |
CRITICAL
Network
|
ipswitch
|
imail_server
|
Stack based buffer overflow in Ipswitch IMail server up to and including 12.5.5 allows remote attackers to execute arbitrary code via unspecified vectors in IMmailSrv, aka ETRE or ETCTERARED.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-12639
|
2024-11-21 12:09 |
2017-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254968
|
9.8 |
CRITICAL
Network
|
ipswitch
|
imail_server
|
Stack based buffer overflow in Ipswitch IMail server up to and including 12.5.5 allows remote attackers to execute arbitrary code via unspecified vectors in IMmailSrv, aka ETBL or ETCETERABLUE.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-12638
|
2024-11-21 12:09 |
2017-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254969
|
9.8 |
CRITICAL
Network
|
apache
|
opennlp
|
When loading models or dictionaries that contain XML it is possible to perform an XXE attack, since Apache OpenNLP is a library, this only affects applications that load models or dictionaries from u…
|
CWE-611
XXE
|
CVE-2017-12620
|
2024-11-21 12:09 |
2017-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254970
|
6.8 |
MEDIUM
Physics
|
cisco
|
ios_xe
|
A vulnerability in motherboard console ports of line cards for Cisco ASR 1000 Series Aggregation Services Routers and Cisco cBR-8 Converged Broadband Routers could allow an unauthenticated, physical …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-12239
|
2024-11-21 12:09 |
2017-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
