|
286011
|
- |
|
cisco
|
telepresence_video_communication_server
|
The Expressway component in Cisco TelePresence Video Communication Server (VCS) uses the same default X.509 certificate across different customers' installations, which makes it easier for remote att…
|
CWE-255
Credentials Management
|
CVE-2014-0675
|
2024-11-21 11:02 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286012
|
- |
|
lockon
|
ec-cube
|
Authorization bypass through user-controlled key issue exists in EC-CUBE 2.11.0 through 2.12.2 and EC-Orange systems deployed before June 29th, 2015. If this vulnerability is exploited, a user of the…
|
NVD-CWE-noinfo
|
CVE-2014-0808
|
2024-11-21 11:02 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286013
|
- |
|
lockon
|
ec-cube
|
data/class/pages/shopping/LC_Page_Shopping_Deliv.php in LOCKON EC-CUBE 2.4.4 and earlier, and 2.11.0 through 2.12.2, allows remote attackers to modify data via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2014-0807
|
2024-11-21 11:02 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286014
|
- |
|
fenrir-inc
|
sleipnir_mobile
|
The Sleipnir Mobile application 2.12.1 and earlier and Sleipnir Mobile Black Edition application 2.12.1 and earlier for Android provide Geolocation API data without verifying user consent, which allo…
|
CWE-200
Information Exposure
|
CVE-2014-0806
|
2024-11-21 11:02 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286015
|
- |
|
cisco
|
nx-os
|
The Label Distribution Protocol (LDP) functionality in Cisco NX-OS allows remote attackers to cause a denial of service (temporary LDP session outage) via LDP discovery traffic containing malformed H…
|
CWE-20
Improper Input Validation
|
CVE-2014-0677
|
2024-11-21 11:02 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286016
|
- |
|
cisco
|
nx-os
|
Cisco NX-OS allows local users to bypass intended TACACS+ command restrictions via a series of multiple commands, aka Bug ID CSCum47367.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0676
|
2024-11-21 11:02 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286017
|
- |
|
cisco
|
telepresence_video_communication_servers_software
telepresence_video_communication_server_software
|
The SIP module in Cisco TelePresence Video Communication Server (VCS) before 8.1 allows remote attackers to cause a denial of service (process failure) via a crafted SDP message, aka Bug ID CSCue9763…
|
CWE-20
Improper Input Validation
|
CVE-2014-0662
|
2024-11-21 11:02 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286018
|
- |
|
cisco
|
telepresence_system_software
telepresence_system_1000
telepresence_system_1300-65
telepresence_system_3000
telepresence_system_3010
telepresence_system_3200
telepresence_system_3210…
|
The System Status Collection Daemon (SSCD) in Cisco TelePresence System 500-37, 1000, 1300-65, and 3xxx before 1.10.2(42), and 500-32, 1300-47, TX1310 65, and TX9xxx before 6.0.4(11), allows remote a…
|
CWE-94
Code Injection
|
CVE-2014-0661
|
2024-11-21 11:02 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286019
|
- |
|
cisco
|
telepresence_isdn_gateway_software
|
Cisco TelePresence ISDN Gateway with software before 2.2(1.92) allows remote attackers to cause a denial of service (D-channel call outage) via a crafted Q.931 STATUS message, aka Bug ID CSCui50360.
|
CWE-20
Improper Input Validation
|
CVE-2014-0660
|
2024-11-21 11:02 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286020
|
- |
|
cisco
|
mediasense
|
The Search and Play interface in Cisco MediaSense does not properly enforce authorization requirements, which allows remote authenticated users to download arbitrary recordings via a request to this …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0672
|
2024-11-21 11:02 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
