|
249211
|
6.1 |
MEDIUM
Network
|
cisco
|
anyconnect_secure_mobility_client
|
The WebLaunch functionality of Cisco AnyConnect Secure Mobility Client Software contains a vulnerability that could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) a…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6788
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249212
|
6.3 |
MEDIUM
Local
|
cisco
|
elastic_services_controller
|
A vulnerability in Cisco Elastic Services Controller could allow an authenticated, local, unprivileged attacker to access sensitive information, including credentials for system accounts, on an affec…
|
CWE-200
Information Exposure
|
CVE-2017-6786
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249213
|
4.3 |
MEDIUM
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in configuration modification permissions validation for Cisco Unified Communications Manager could allow an authenticated, remote attacker to perform a horizontal privilege escalatio…
|
CWE-20
Improper Input Validation
|
CVE-2017-6785
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249214
|
5.3 |
MEDIUM
Network
|
cisco
|
small_business_rv340_firmware
small_business_rv345_firmware
small_business_rv345p_firmware
|
A vulnerability in the web interface of the Cisco RV340, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an unauthenticated, remote attacker to access sensitive data. The attacker could us…
|
CWE-200
Information Exposure
|
CVE-2017-6784
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249215
|
4.3 |
MEDIUM
Network
|
cisco
|
web_security_appliance
content_security_management_appliance
email_security_appliance
|
A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) could allow an authenticated, remote attack…
|
CWE-200
Information Exposure
|
CVE-2017-6783
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249216
|
5.4 |
MEDIUM
Network
|
cisco
|
prime_infrastructure
|
A vulnerability in the administrative web interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to modify a page in the web interface of the affected application. The …
|
CWE-94
Code Injection
|
CVE-2017-6782
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249217
|
5.3 |
MEDIUM
Local
|
cisco
|
policy_suite
|
A vulnerability in the management of shell user accounts for Cisco Policy Suite (CPS) Software for CPS appliances could allow an authenticated, local attacker to gain elevated privileges on an affect…
|
CWE-287
Improper Authentication
|
CVE-2017-6781
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249218
|
6.5 |
MEDIUM
Network
|
cisco
|
ultra_services_platform
|
A vulnerability in the Elastic Services Controller (ESC) web interface of the Cisco Ultra Services Platform could allow an authenticated, remote attacker to acquire sensitive information. The vulnera…
|
CWE-200
Information Exposure
|
CVE-2017-6778
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249219
|
4.9 |
MEDIUM
Network
|
cisco
|
elastic_services_controller
|
A vulnerability in the ConfD server of the Cisco Elastic Services Controller (ESC) could allow an authenticated, remote attacker to acquire sensitive system information. The vulnerability is due to i…
|
CWE-200
Information Exposure
|
CVE-2017-6777
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249220
|
6.1 |
MEDIUM
Network
|
cisco
|
elastic_services_controller
|
A vulnerability in the web framework of Cisco Elastic Services Controller (ESC) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the we…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6776
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
