|
258321
|
6.1 |
MEDIUM
Network
|
cisco
|
firepower_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack aga…
|
CWE-79
Cross-site Scripting
|
CVE-2017-12220
|
2024-11-21 12:09 |
2017-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258322
|
5.8 |
MEDIUM
Network
|
cisco
|
asyncos
|
A vulnerability in the malware detection functionality within Advanced Malware Protection (AMP) of Cisco AsyncOS Software for Cisco Email Security Appliances (ESAs) could allow an unauthenticated, re…
|
CWE-20
Improper Input Validation
|
CVE-2017-12218
|
2024-11-21 12:09 |
2017-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258323
|
5.3 |
MEDIUM
Network
|
cisco
|
asr_5500_firmware
|
A vulnerability in the General Packet Radio Service (GPRS) Tunneling Protocol ingress packet handler of Cisco ASR 5500 System Architecture Evolution (SAE) Gateways could allow an unauthenticated, rem…
|
CWE-20
Improper Input Validation
|
CVE-2017-12217
|
2024-11-21 12:09 |
2017-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258324
|
8.8 |
HIGH
Network
|
cisco
|
socialminer
|
A vulnerability in the web-based user interface of Cisco SocialMiner could allow an unauthenticated, remote attacker to have read and write access to information stored in the affected system. The vu…
|
CWE-611
XXE
|
CVE-2017-12216
|
2024-11-21 12:09 |
2017-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258325
|
4.3 |
MEDIUM
Adjacent
|
cisco
|
ios_xe
|
A vulnerability in the dynamic access control list (ACL) feature of Cisco IOS XE Software running on Cisco Catalyst 4000 Series Switches could allow an unauthenticated, adjacent attacker to cause dyn…
|
CWE-287
Improper Authentication
|
CVE-2017-12213
|
2024-11-21 12:09 |
2017-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258326
|
6.1 |
MEDIUM
Network
|
cisco
|
unity_connection
|
A vulnerability in the web framework of Cisco Unity Connection could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web inter…
|
CWE-79
Cross-site Scripting
|
CVE-2017-12212
|
2024-11-21 12:09 |
2017-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258327
|
5.3 |
MEDIUM
Network
|
cisco
|
ios_xe
ios
|
A vulnerability in the IPv6 Simple Network Management Protocol (SNMP) code of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to cause high CPU usage or a reload of …
|
NVD-CWE-noinfo
|
CVE-2017-12211
|
2024-11-21 12:09 |
2017-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258328
|
6.1 |
MEDIUM
Network
|
paloaltonetworks
|
pan-os
|
Cross-site scripting (XSS) vulnerability in the GlobalProtect internal and external gateway interface in Palo Alto Networks PAN-OS before 6.1.18, 7.0.x before 7.0.17, 7.1.x before 7.1.12, and 8.0.x b…
|
CWE-79
Cross-site Scripting
|
CVE-2017-12416
|
2024-11-21 12:09 |
2017-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258329
|
5.5 |
MEDIUM
Local
|
bento4
|
bento4
|
The AP4_AvccAtom::InspectFields function in Core/Ap4AvccAtom.cpp in Bento4 mp4dump before 1.5.0-616 allows remote attackers to cause a denial of service (NULL pointer dereference and application cras…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-12476
|
2024-11-21 12:09 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258330
|
5.5 |
MEDIUM
Local
|
axiosys
|
bento4
|
The AP4_Processor::Process function in Core/Ap4Processor.cpp in Bento4 mp4encrypt before 1.5.0-616 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-12475
|
2024-11-21 12:09 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
