|
271531
|
- |
|
cisco
|
epc3928_docsis_3.0_8x4_wireless_residential_gateway_with_embedded_digital_voice_adapter
|
Cisco EPC3928 devices with EDVA 5.5.10, 5.5.11, and 5.7.1 allow remote attackers to bypass an intended authentication requirement and execute unspecified administrative functions via a crafted HTTP r…
|
CWE-287
Improper Authentication
|
CVE-2015-6401
|
2024-11-21 11:34 |
2015-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271532
|
- |
|
cisco
|
dpq3925_8x4_docsis_3.0_wireless_residential_gateway_with_embedded_digital_voice_adapter
|
Cross-site request forgery (CSRF) vulnerability on Cisco DPQ3925 devices with EDVA 5.5.2 allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuv05943.
|
CWE-352
Origin Validation Error
|
CVE-2015-6378
|
2024-11-21 11:34 |
2015-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271533
|
- |
|
cisco
|
sa520
sa540
sa520w
rv042g_dual_gigabit_wan_vpn_firmware
rv082_dual_wan_vpn_router_firmware
rv016_multi-wan_vpn_firmware
rv042_dual_wan_vpn_router_firmware
|
The random-number generator on Cisco Small Business RV routers 4.x and SA500 security appliances 2.2.07 does not have sufficient entropy, which makes it easier for remote attackers to determine a TLS…
|
CWE-200
Information Exposure
|
CVE-2015-6418
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271534
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
Cisco TelePresence Video Communication Server (VCS) X8.6 uses the same encryption key across different customers' installations, which makes it easier for local users to defeat cryptographic protecti…
|
CWE-200
Information Exposure
|
CVE-2015-6414
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271535
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
Cisco TelePresence Video Communication Server (VCS) Expressway X8.6 allows remote authenticated users to bypass intended read-only restrictions and upload Tandberg Linux Package (TLP) files by visiti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6413
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271536
|
- |
|
cisco
|
emergency_responder
|
Cisco Emergency Responder 10.5(3.10000.9) allows remote attackers to upload files to arbitrary locations via a crafted parameter, aka Bug ID CSCuv25501.
|
CWE-20
Improper Input Validation
|
CVE-2015-6407
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271537
|
- |
|
cisco
|
emergency_responder
|
Directory traversal vulnerability in the Tools menu in Cisco Emergency Responder 10.5(1.10000.5) allows remote authenticated users to write to arbitrary files via a crafted filename, aka Bug ID CSCuv…
|
CWE-22
Path Traversal
|
CVE-2015-6406
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271538
|
- |
|
cisco
|
emergency_responder
|
Cross-site request forgery (CSRF) vulnerability in Cisco Emergency Responder 10.5(1) and 10.5(1a) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuv26501.
|
CWE-352
Origin Validation Error
|
CVE-2015-6405
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271539
|
- |
|
cisco
|
emergency_responder
|
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Emergency Responder 10.5(1a) allow remote attackers to inject arbitrary web script or HTML via unspecified fields, aka Bug ID CSCuv25547.
|
CWE-79
Cross-site Scripting
|
CVE-2015-6400
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271540
|
- |
|
cisco
|
prime_collaboration_assurance
|
Cisco Prime Collaboration Assurance before 11.0 has a hardcoded cmuser account, which allows remote attackers to obtain access by establishing an SSH session and leveraging knowledge of this account'…
|
CWE-287
Improper Authentication
|
CVE-2015-6389
|
2024-11-21 11:34 |
2015-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
