|
249401
|
7.5 |
HIGH
Network
|
cisco
|
rv180w_firmware
rv220w_firmware
|
A vulnerability in the web framework code for Cisco RV180W Wireless-N Multifunction VPN Router and Small Business RV Series RV220W Wireless Network Security Firewall could allow an unauthenticated, r…
|
CWE-22
Path Traversal
|
CVE-2018-0405
|
2024-11-21 12:38 |
2018-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249402
|
8.1 |
HIGH
Network
|
cisco
|
prime_data_center_network_manager
|
A vulnerability in Cisco Data Center Network Manager software could allow an authenticated, remote attacker to conduct directory traversal attacks and gain access to sensitive files on the targeted s…
|
CWE-22
Path Traversal
|
CVE-2018-0464
|
2024-11-21 12:38 |
2018-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249403
|
7.5 |
HIGH
Network
|
cisco
|
rv180w_wireless-n_multifunction_vpn_router
rv220w_wireless_network_security_firewall
|
A vulnerability in the web framework code for Cisco RV180W Wireless-N Multifunction VPN Router and Small Business RV Series RV220W Wireless Network Security Firewall could allow an unauthenticated, r…
|
CWE-89
SQL Injection
|
CVE-2018-0404
|
2024-11-21 12:38 |
2018-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249404
|
8.8 |
HIGH
Network
|
cisco
|
cloud_services_platform_2100_firmware
|
A vulnerability in the web-based management interface of Cisco Cloud Services Platform 2100 could allow an authenticated, remote attacker to perform command injection. The vulnerability is due to ins…
|
CWE-77
Command Injection
|
CVE-2018-0454
|
2024-11-21 12:38 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249405
|
5.7 |
MEDIUM
Network
|
cisco
|
secure_access_control_server_solution_engine
|
A vulnerability in the web-based UI of Cisco Secure Access Control Server could allow an authenticated, remote attacker to gain read access to certain information in an affected system. The vulnerabi…
|
CWE-611
XXE
|
CVE-2018-0414
|
2024-11-21 12:38 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249406
|
6.5 |
MEDIUM
Network
|
mediawiki
debian
|
mediawiki
debian_linux
|
Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where BotPasswords can bypass CentralAuth's account lock
|
CWE-287
Improper Authentication
|
CVE-2018-0505
|
2024-11-21 12:38 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249407
|
6.5 |
MEDIUM
Network
|
mediawiki
debian
|
mediawiki
debian_linux
|
Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains an information disclosure flaw in the Special:Redirect/logid
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2018-0504
|
2024-11-21 12:38 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249408
|
4.3 |
MEDIUM
Network
|
mediawiki
debian
|
mediawiki
debian_linux
|
Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where contrary to the documentation, $wgRateLimits entry for 'user' overrides that for 'newbie'.
|
CWE-269
Improper Privilege Management
|
CVE-2018-0503
|
2024-11-21 12:38 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249409
|
8.6 |
HIGH
Network
|
cisco
|
ios
ios_xe
|
A vulnerability in the SM-1T3/E3 firmware on Cisco Second Generation Integrated Services Routers (ISR G2) and the Cisco 4451-X Integrated Services Router (ISR4451-X) could allow an unauthenticated, r…
|
CWE-20
Improper Input Validation
|
CVE-2018-0485
|
2024-11-21 12:38 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249410
|
6.7 |
MEDIUM
Local
|
cisco
|
ios_xe
|
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. T…
|
CWE-78
OS Command
|
CVE-2018-0481
|
2024-11-21 12:38 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
