|
272821
|
- |
|
cisco
|
webex_meetings
|
The Cisco WebEx Meetings application before 8.5.1 for Android improperly initializes custom application permissions, which allows attackers to bypass intended access restrictions via a crafted applic…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6384
|
2024-11-21 11:34 |
2015-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272822
|
- |
|
cisco
|
unity_connection
|
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unity Connection 9.1(1.10) allows remote attackers to inject arbitrary web script or HTML via a crafted value in a URL, a…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6390
|
2024-11-21 11:34 |
2015-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272823
|
- |
|
cisco
|
ios_xe
|
Cisco IOS XE 15.4(3)S on ASR 1000 devices improperly loads software packages, which allows local users to bypass license restrictions and obtain certain root privileges by using the CLI to enter craf…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6383
|
2024-11-21 11:34 |
2015-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272824
|
- |
|
cisco
|
web_security_appliance
|
The passthrough FTP feature on Cisco Web Security Appliance (WSA) devices with software 8.0.7-142 and 8.5.1-021 allows remote attackers to cause a denial of service (CPU consumption) via FTP sessions…
|
CWE-399
Resource Management Errors
|
CVE-2015-6386
|
2024-11-21 11:34 |
2015-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272825
|
- |
|
cisco
|
ios
|
The publish-event event-manager feature in Cisco IOS 15.5(2)S and 15.5(3)S on Cloud Services Router 1000V devices allows local users to execute arbitrary commands with root privileges by leveraging a…
|
CWE-20
Improper Input Validation
|
CVE-2015-6385
|
2024-11-21 11:34 |
2015-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272826
|
- |
|
cisco
|
asr_5000_series_software
|
Cisco ASR 5000 devices with software 16.0(900) allow remote attackers to cause a denial of service (telnetd process restart) via a TELNET connection, aka Bug ID CSCuv25815.
|
CWE-399
Resource Management Errors
|
CVE-2015-6382
|
2024-11-21 11:34 |
2015-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272827
|
- |
|
cisco
|
adaptive_security_appliance_software
|
The XML parser in the management interface in Cisco Adaptive Security Appliance (ASA) Software 8.4 allows remote authenticated users to cause a denial of service (device crash) via a crafted XML docu…
|
CWE-399
Resource Management Errors
|
CVE-2015-6379
|
2024-11-21 11:34 |
2015-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272828
|
- |
|
cisco
|
firepower_extensible_operating_system
|
An unspecified script in the web interface in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote authenticated users to execute arbitrary OS commands via c…
|
CWE-78
OS Command
|
CVE-2015-6380
|
2024-11-21 11:34 |
2015-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272829
|
- |
|
cisco
|
virtual_topology_system
|
Cisco Virtual Topology System (VTS) 2.0(0) and 2.0(1) allows remote attackers to cause a denial of service (CPU and memory consumption, and TCP port outage) via a flood of crafted TCP packets, aka Bu…
|
CWE-399
Resource Management Errors
|
CVE-2015-6377
|
2024-11-21 11:34 |
2015-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272830
|
- |
|
apple
|
mac_os_x
iphone_os
|
The CFNetwork HTTPProtocol component in Apple iOS before 9 and OS X before 10.11 does not properly recognize the HSTS preload list during a Safari private-browsing session, which makes it easier for …
|
CWE-200
Information Exposure
|
CVE-2015-5859
|
2024-11-21 11:34 |
2015-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
