|
250691
|
9.8 |
CRITICAL
Network
|
cisco
|
aironet_access_point_software
|
A vulnerability in the web-based GUI of Cisco Mobility Express 1800 Series Access Points could allow an unauthenticated, remote attacker to bypass authentication. The attacker could be granted full a…
|
CWE-287
Improper Authentication
|
CVE-2017-3831
|
2024-11-21 12:26 |
2017-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250692
|
8.8 |
HIGH
Network
|
cisco
|
asr_5000_series_software
virtualized_packet_core
|
A privilege escalation vulnerability in the Secure Shell (SSH) subsystem in the StarOS operating system for Cisco ASR 5000 Series, ASR 5500 Series, ASR 5700 Series devices, and Cisco Virtualized Pack…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2017-3819
|
2024-11-21 12:26 |
2017-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250693
|
6.5 |
MEDIUM
Network
|
mcafee
|
advanced_threat_defense
|
SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to obtain product information via a crafted HTTP request paramete…
|
CWE-89
SQL Injection
|
CVE-2017-3899
|
2024-11-21 12:26 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250694
|
7.5 |
HIGH
Network
|
pivotal_software
cloudfoundry
|
cloud_foundry_uaa
cloud_foundry
cloud_foundry_uaa_bosh
|
An issue was discovered in Cloud Foundry release v247 through v252, UAA stand-alone release v3.9.0 through v3.11.0, and UAA Bosh Release v21 through v26. There is a potential to subject the UAA OAuth…
|
NVD-CWE-noinfo
|
CVE-2017-4960
|
2024-11-21 12:26 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250695
|
7.5 |
HIGH
Network
|
cisco
|
netflow_generation_appliance_software
|
A vulnerability in the Stream Control Transmission Protocol (SCTP) decoder of the Cisco NetFlow Generation Appliance (NGA) with software before 1.1(1a) could allow an unauthenticated, remote attacker…
|
CWE-20
Improper Input Validation
|
CVE-2017-3826
|
2024-11-21 12:26 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250696
|
5.4 |
MEDIUM
Network
|
cisco
|
firepower_management_center
|
A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interf…
|
CWE-79
Cross-site Scripting
|
CVE-2017-3847
|
2024-11-21 12:26 |
2017-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250697
|
4.3 |
MEDIUM
Network
|
cisco
|
prime_collaboration_assurance
|
A vulnerability in exporting functions of the user interface for Cisco Prime Collaboration Assurance could allow an authenticated, remote attacker to view file directory listings and download files. …
|
CWE-20
Improper Input Validation
|
CVE-2017-3844
|
2024-11-21 12:26 |
2017-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250698
|
4.3 |
MEDIUM
Network
|
cisco
|
prime_collaboration_assurance
|
A vulnerability in the file download functions for Cisco Prime Collaboration Assurance could allow an authenticated, remote attacker to download system files that should be restricted. More Informati…
|
CWE-20
Improper Input Validation
|
CVE-2017-3843
|
2024-11-21 12:26 |
2017-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250699
|
6.1 |
MEDIUM
Network
|
cisco
|
prime_collaboration_assurance
|
A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a u…
|
CWE-79
Cross-site Scripting
|
CVE-2017-3845
|
2024-11-21 12:26 |
2017-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250700
|
5.3 |
MEDIUM
Network
|
cisco
|
intrusion_prevention_system_device_manager
|
A vulnerability in the web-based management interface of the Cisco Intrusion Prevention System Device Manager (IDM) could allow an unauthenticated, remote attacker to view sensitive information store…
|
CWE-200
Information Exposure
|
CVE-2017-3842
|
2024-11-21 12:26 |
2017-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
