|
246931
|
8.6 |
HIGH
Network
|
cisco
|
ios
ios_xe
|
A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated,…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2018-0155
|
2024-11-21 12:37 |
2018-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246932
|
7.5 |
HIGH
Network
|
cisco
|
ios
|
A vulnerability in the crypto engine of the Cisco Integrated Services Module for VPN (ISM-VPN) running Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service …
|
NVD-CWE-noinfo
|
CVE-2018-0154
|
2024-11-21 12:37 |
2018-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246933
|
8.8 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to gain elevated privileges on an affected device. The vulnerability ex…
|
CWE-613
Insufficient Session Expiration
|
CVE-2018-0152
|
2024-11-21 12:37 |
2018-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246934
|
9.8 |
CRITICAL
Network
|
cisco
|
ios_xe
|
A vulnerability in the quality of service (QoS) subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-0151
|
2024-11-21 12:37 |
2018-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246935
|
9.8 |
CRITICAL
Network
|
cisco
|
ios_xe
|
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, remote attacker to log in to a device running an affected release of Cisco IOS XE Software with the default username and passw…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2018-0150
|
2024-11-21 12:37 |
2018-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246936
|
5.3 |
MEDIUM
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to view sensitive data. The vulnerability is due to insufficient protectio…
|
CWE-425
Direct Request ('Forced Browsing')
|
CVE-2018-0198
|
2024-11-21 12:37 |
2018-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246937
|
5.5 |
MEDIUM
Local
|
clamav
canonical
debian
|
clamav
ubuntu_linux
debian_linux
|
clamscan in ClamAV before 0.99.4 contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-0202
|
2024-11-21 12:37 |
2018-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246938
|
6.7 |
MEDIUM
Local
|
cisco
|
staros
|
A vulnerability in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series Aggregation Services Routers could allow an authenticated, local attacker to execute arbitrary commands with …
|
CWE-78
OS Command
|
CVE-2018-0224
|
2024-11-21 12:37 |
2018-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246939
|
6.1 |
MEDIUM
Network
|
cisco
|
security_manager
|
A vulnerability in DesktopServlet in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) att…
|
CWE-79
Cross-site Scripting
|
CVE-2018-0223
|
2024-11-21 12:37 |
2018-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246940
|
6.7 |
MEDIUM
Local
|
cisco
|
identity_services_engine
|
A vulnerability in specific CLI commands for the Cisco Identity Services Engine (ISE) could allow an authenticated, local attacker to perform command injection to the underlying operating system or c…
|
CWE-78
OS Command
|
CVE-2018-0221
|
2024-11-21 12:37 |
2018-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
