|
271581
|
- |
|
cisco
|
unified_communications_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in the ccmivr page in Cisco Unified Communications Manager (formerly CallManager) 10.5(2.10000.5) allow remote attackers to inject arbitrary web sc…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4272
|
2024-11-21 11:30 |
2015-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271582
|
- |
|
cisco
|
unified_communications_manager
|
The Tomcat throttling feature in Cisco Unified Communications Manager 10.5(1.99995.9) allows remote authenticated users to cause a denial of service (management outage) by sending many requests, aka …
|
CWE-399
Resource Management Errors
|
CVE-2015-4269
|
2024-11-21 11:30 |
2015-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271583
|
- |
|
cisco
|
mobility_services_engine
|
The Control and Provisioning functionality in Cisco Mobility Services Engine (MSE) 10.0(0.1) allows remote authenticated users to obtain sensitive information by reading log files, aka Bug ID CSCut36…
|
CWE-200
Information Exposure
|
CVE-2015-4263
|
2024-11-21 11:30 |
2015-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271584
|
- |
|
cisco
|
email_security_appliance
email_security_appliance_firmware
|
Cisco AsyncOS on Email Security Appliance (ESA) devices with software 8.5.6-073, 8.5.6-074, and 9.0.0-461, when clustering is enabled, allows remote attackers to cause a denial of service (clustering…
|
CWE-399
Resource Management Errors
|
CVE-2015-4236
|
2024-11-21 11:30 |
2015-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271585
|
- |
|
cisco
|
telepresence_advanced_media_gateway
|
Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence Advanced Media Gateway devices with software 1.1(1.40) allows remote attackers to hijack the authentication of arbitrary users, a…
|
CWE-352
Origin Validation Error
|
CVE-2015-4254
|
2024-11-21 11:30 |
2015-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271586
|
- |
|
cisco
|
unified_computing_system
|
The Integrated Management Controller on Cisco Unified Computing System (UCS) C servers with software 1.5(3) and 1.6(0.16) has a default SSL certificate, which makes it easier for man-in-the-middle at…
|
CWE-310
Cryptographic Issues
|
CVE-2015-4259
|
2024-11-21 11:30 |
2015-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271587
|
- |
|
cisco
|
hosted_collaboration_solution
|
Cross-site scripting (XSS) vulnerability in Cisco Hosted Collaboration Solution 10.6(1) allows remote attackers to inject arbitrary web script or HTML via a crafted value in a URL, aka Bug ID CSCuu14…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4260
|
2024-11-21 11:30 |
2015-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271588
|
- |
|
cisco
|
asr_5000_series_software
|
The boot implementation on Cisco ASR 5000 and 5500 devices with software 14.0 allows local users to execute arbitrary Linux commands by leveraging administrative privileges for storage of these comma…
|
CWE-78
OS Command
|
CVE-2015-4244
|
2024-11-21 11:30 |
2015-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271589
|
- |
|
cisco
|
telepresence_mse_8000_series
|
Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence MSE 8000 devices allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu90444.
|
CWE-352
Origin Validation Error
|
CVE-2015-4258
|
2024-11-21 11:30 |
2015-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271590
|
- |
|
cisco
|
telepresence_mcu_software
|
Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence MCU 4500 devices with software 4.5(1.55) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCu…
|
CWE-352
Origin Validation Error
|
CVE-2015-4257
|
2024-11-21 11:30 |
2015-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
