|
246871
|
8.6 |
HIGH
Network
|
cisco
|
aironet_access_point_software
|
A vulnerability in the implementation of Point-to-Point Tunneling Protocol (PPTP) functionality in Cisco Aironet 1810, 1830, and 1850 Series Access Points could allow an unauthenticated, remote attac…
|
CWE-20
Improper Input Validation
|
CVE-2018-0234
|
2024-11-21 12:37 |
2018-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246872
|
7.5 |
HIGH
Network
|
cisco
|
mobility_express_software
|
A vulnerability in the assignment and management of default user accounts for Secure Shell (SSH) access to Cisco Aironet 1800, 2800, and 3800 Series Access Points that are running Cisco Mobility Expr…
|
NVD-CWE-noinfo
|
CVE-2018-0226
|
2024-11-21 12:37 |
2018-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246873
|
6.1 |
MEDIUM
Network
|
cisco
|
webex_connect_im
|
A vulnerability in Cisco WebEx Connect IM could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of an affected system. The vulnerability is due…
|
CWE-79
Cross-site Scripting
|
CVE-2018-0276
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246874
|
6.7 |
MEDIUM
Local
|
cisco
|
identity_services_engine
|
A vulnerability in the support tunnel feature of Cisco Identity Services Engine (ISE) could allow an authenticated, local attacker to access the device's shell. The vulnerability is due to improper c…
|
NVD-CWE-noinfo
|
CVE-2018-0275
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246875
|
5.3 |
MEDIUM
Network
|
cisco
|
staros
|
A vulnerability in the IPsec Manager of Cisco StarOS for Cisco Aggregation Services Router (ASR) 5000 Series Routers and Virtualized Packet Core (VPC) System Software could allow an unauthenticated, …
|
NVD-CWE-noinfo
|
CVE-2018-0273
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246876
|
5.9 |
MEDIUM
Network
|
cisco
|
firepower
|
A vulnerability in the Secure Sockets Layer (SSL) Engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerabi…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2018-0272
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246877
|
4.3 |
MEDIUM
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, remote attacker to view sensitive data. The vulnerability is due to insufficient protection …
|
CWE-425
Direct Request ('Forced Browsing')
|
CVE-2018-0266
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246878
|
4.3 |
MEDIUM
Network
|
cisco
|
digital_network_architecture_center
|
A vulnerability in the web framework of the Cisco Digital Network Architecture Center (DNA Center) could allow an unauthenticated, remote attacker to communicate with the Kong API server without rest…
|
CWE-863
Incorrect Authorization
|
CVE-2018-0269
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246879
|
6.5 |
MEDIUM
Local
|
cisco
|
unified_communications_manager
|
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, local attacker to view sensitive data that should be restricted. This could include LDAP cre…
|
CWE-425
Direct Request ('Forced Browsing')
|
CVE-2018-0267
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246880
|
5.3 |
MEDIUM
Network
|
cisco
|
mate_live
|
A vulnerability in the web interface of Cisco MATE Live could allow an unauthenticated, remote attacker to view and download the contents of certain web application virtual directories. The vulnerabi…
|
CWE-20
Improper Input Validation
|
CVE-2018-0260
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
