|
249381
|
8.6 |
HIGH
Local
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "Speech Framework" component. It allows attackers to conduct sandbox-escape attacks or caus…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6977
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249382
|
6.1 |
MEDIUM
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in the web-based management interface of Cisco Unified Communications Manager 10.5 through 11.5 could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS)…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6654
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249383
|
7.5 |
HIGH
Network
|
cisco
|
identity_services_engine
|
A vulnerability in the TCP throttling process for the GUI of the Cisco Identity Services Engine (ISE) 2.1(0.474) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) con…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-6653
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249384
|
7.8 |
HIGH
Local
|
cisco
|
nx-os
|
A vulnerability in the Telnet CLI command of Cisco NX-OS System Software 7.1 through 7.3 running on Cisco Nexus Series Switches could allow an authenticated, local attacker to perform a command injec…
|
CWE-20
CWE-77
Improper Input Validation
Command Injection
|
CVE-2017-6650
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249385
|
7.8 |
HIGH
Local
|
cisco
|
nx-os
|
A vulnerability in the CLI of Cisco NX-OS System Software 7.1 through 7.3 running on Cisco Nexus Series Switches could allow an authenticated, local attacker to perform a command injection attack. Th…
|
CWE-20
CWE-77
Improper Input Validation
Command Injection
|
CVE-2017-6649
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249386
|
5.3 |
MEDIUM
Network
|
cisco
|
remote_expert_manager
|
A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an unauthenticated, remote attacker to access sensitive Temporary File information on an affected syste…
|
CWE-200
Information Exposure
|
CVE-2017-6647
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249387
|
5.3 |
MEDIUM
Network
|
cisco
|
ip_phone_8800_series_firmware
|
A vulnerability in the Session Initiation Protocol (SIP) implementation of Cisco IP Phone 8851 11.0(0.1) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. …
|
NVD-CWE-noinfo
|
CVE-2017-6630
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249388
|
5.3 |
MEDIUM
Network
|
cisco
|
remote_expert_manager
|
A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an unauthenticated, remote attacker to access sensitive Order information on an affected system. The vu…
|
CWE-200
Information Exposure
|
CVE-2017-6646
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249389
|
5.3 |
MEDIUM
Network
|
cisco
|
remote_expert_manager
|
A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an unauthenticated, remote attacker to access sensitive Virtual Temporary Directory information on an a…
|
CWE-200
Information Exposure
|
CVE-2017-6645
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249390
|
5.3 |
MEDIUM
Network
|
cisco
|
remote_expert_manager
|
A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an unauthenticated, remote attacker to access sensitive information on an affected system. The vulnerab…
|
CWE-200
Information Exposure
|
CVE-2017-6644
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
