|
246841
|
7.5 |
HIGH
Network
|
cisco
|
ip_phone_8800_firmware
ip_phone_7800_firmware
|
A vulnerability in the Session Initiation Protocol (SIP) call-handling functionality of Cisco IP Phone 7800 Series phones and Cisco IP Phone 8800 Series phones could allow an unauthenticated, remote …
|
CWE-20
Improper Input Validation
|
CVE-2018-0325
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246842
|
6.7 |
MEDIUM
Local
|
cisco
|
network_functions_virtualization_infrastructure
|
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, high-privileged, local attacker to perform a command injection attack. The vulnerabili…
|
CWE-78
OS Command
|
CVE-2018-0324
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246843
|
6.5 |
MEDIUM
Network
|
cisco
|
network_functions_virtualization_infrastructure
|
A vulnerability in the web management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to conduct a path traversal attack on a targeted …
|
CWE-22
Path Traversal
|
CVE-2018-0323
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246844
|
5.8 |
MEDIUM
Network
|
cisco
|
firepower_threat_defense
|
A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote attacker to bypass a configured Secure Sockets Layer (SSL) Access Control (AC…
|
CWE-693
Protection Mechanism Failure
|
CVE-2018-0297
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246845
|
5.3 |
MEDIUM
Network
|
cisco
|
socialminer
|
A vulnerability in the TCP stack of Cisco SocialMiner could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition in the notification system. The vulnerability is due…
|
NVD-CWE-noinfo
|
CVE-2018-0290
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246846
|
6.1 |
MEDIUM
Network
|
cisco
|
identity_services_engine_software
|
A vulnerability in the logs component of Cisco Identity Services Engine could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper v…
|
CWE-79
Cross-site Scripting
|
CVE-2018-0289
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246847
|
7.5 |
HIGH
Network
|
cisco
|
meeting_server
|
A vulnerability in the Real-Time Transport Protocol (RTP) bitstream processing of the Cisco Meeting Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition…
|
CWE-20
Improper Input Validation
|
CVE-2018-0280
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246848
|
8.8 |
HIGH
Network
|
cisco
|
enterprise_nfv_infrastructure_software
|
A vulnerability in the Secure Copy Protocol (SCP) server of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to access the shell of the underlying Li…
|
CWE-78
OS Command
|
CVE-2018-0279
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246849
|
8.6 |
HIGH
Network
|
cisco
|
identity_services_engine
|
A vulnerability in the Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) certificate validation during EAP authentication for the Cisco Identity Services Engine (ISE) could allow …
|
CWE-295
Improper Certificate Validation
|
CVE-2018-0277
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246850
|
9.8 |
CRITICAL
Network
|
cisco
|
digital_network_architecture_center
|
A vulnerability in the API gateway of the Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and access critical services. The vu…
|
CWE-287
Improper Authentication
|
CVE-2018-0271
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
