|
253991
|
8.8 |
HIGH
Network
|
cisco
|
industrial_ethernet_1000_series_firmware
|
A vulnerability in the Device Manager web interface of Cisco Industrial Ethernet 1000 Series Switches 1.3 could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF…
|
CWE-352
Origin Validation Error
|
CVE-2017-6634
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253992
|
7.5 |
HIGH
Network
|
cisco
|
unified_computing_system
|
A vulnerability in the TCP throttling process of Cisco UCS C-Series Rack Servers 3.0(0.234) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6633
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253993
|
7.5 |
HIGH
Network
|
cisco
|
firepower_threat_defense
|
A vulnerability in the logging configuration of Secure Sockets Layer (SSL) policies for Cisco FirePOWER System Software 5.3.0 through 6.2.2 could allow an unauthenticated, remote attacker to cause a …
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-6632
|
2024-11-21 12:30 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253994
|
7.5 |
HIGH
Network
|
cisco
|
telepresence_ix5000
|
A vulnerability in the web framework of the Cisco TelePresence IX5000 Series could allow an unauthenticated, remote attacker to access arbitrary files on an affected device. The vulnerability is due …
|
CWE-22
CWE-20
Path Traversal
Improper Input Validation
|
CVE-2017-6652
|
2024-11-21 12:30 |
2017-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253995
|
7.8 |
HIGH
Local
|
cisco
|
policy_suite
|
A vulnerability in a script file that is installed as part of the Cisco Policy Suite (CPS) Software distribution for the CPS appliance could allow an authenticated, local attacker to escalate their p…
|
CWE-269
Improper Privilege Management
|
CVE-2017-6623
|
2024-11-21 12:30 |
2017-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253996
|
9.8 |
CRITICAL
Network
|
cisco
|
prime_collaboration_provisioning
|
A vulnerability in the web interface for Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to bypass authentication and perform command injection with root privil…
|
CWE-862
Missing Authorization
|
CVE-2017-6622
|
2024-11-21 12:30 |
2017-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253997
|
7.5 |
HIGH
Network
|
cisco
|
prime_collaboration_provisioning
|
A vulnerability in the web interface of Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to access sensitive data. The attacker could use this information to con…
|
CWE-200
Information Exposure
|
CVE-2017-6621
|
2024-11-21 12:30 |
2017-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253998
|
7.5 |
HIGH
Network
|
cisco
|
sourcefire_snort
|
Cisco Sourcefire Snort 3.0 before build 233 has a Buffer Overread related to use of a decoder array. The size was off by one making it possible to read past the end of the array with an ether type of…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-6658
|
2024-11-21 12:30 |
2017-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253999
|
7.5 |
HIGH
Network
|
cisco
|
snort\+\+
|
Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type Validation. Since valid ether type and IP protocol numbers do not overlap, Snort++ stores all protocol decoders in a single array. Th…
|
NVD-CWE-noinfo
|
CVE-2017-6657
|
2024-11-21 12:30 |
2017-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254000
|
7.5 |
HIGH
Network
|
cisco
|
webex_meetings_server
|
A vulnerability in Cisco WebEx Meetings Server could allow unauthenticated, remote attackers to gain information that could allow them to access scheduled customer meetings. The vulnerability is due …
|
CWE-200
Information Exposure
|
CVE-2017-6651
|
2024-11-21 12:30 |
2017-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
