|
247531
|
6.8 |
MEDIUM
Network
|
cisco
|
unity_connection
|
A vulnerability in the Bulk Administration Tool (BAT) for Cisco Unity Connection could allow an authenticated, remote attacker to cause high disk utilization, resulting in a denial of service (DoS) c…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-15396
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247532
|
4.3 |
MEDIUM
Adjacent
|
cisco
|
industrial_network_director
|
A vulnerability in the DHCP service of Cisco Industrial Network Director could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to im…
|
NVD-CWE-noinfo
|
CVE-2018-15392
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247533
|
7.5 |
HIGH
Network
|
cisco
|
remote
|
A vulnerability in certain IPv4 fragment-processing functions of Cisco Remote PHY Software could allow an unauthenticated, remote attacker to impact traffic passing through a device, potentially caus…
|
CWE-682
Incorrect Calculation
|
CVE-2018-15391
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247534
|
6.8 |
MEDIUM
Network
|
cisco
|
firepower_threat_defense
|
A vulnerability in the FTP inspection engine of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a den…
|
CWE-667
Improper Locking
|
CVE-2018-15390
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247535
|
9.8 |
CRITICAL
Network
|
cisco
|
prime_collaboration
|
A vulnerability in the install function of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to access the administrative web interface using a default hard…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2018-15389
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247536
|
9.8 |
CRITICAL
Network
|
cisco
|
digital_network_architecture_center
|
A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and have direct unauthorized access to critical management …
|
NVD-CWE-noinfo
|
CVE-2018-15386
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247537
|
7.5 |
HIGH
Network
|
cisco
|
firepower_threat_defense
adaptive_security_appliance_software
|
A vulnerability in the cryptographic hardware accelerator driver of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, …
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2018-15383
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247538
|
8.6 |
HIGH
Network
|
cisco
|
hyperflex_hx_data_platform
|
A vulnerability in Cisco HyperFlex Software could allow an unauthenticated, remote attacker to generate valid, signed session tokens. The vulnerability is due to a static signing key that is present …
|
CWE-642
External Control of Critical State Data
|
CVE-2018-15382
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247539
|
9.8 |
CRITICAL
Network
|
cisco
|
prime_infrastructure
|
A vulnerability in which the HTTP web server for Cisco Prime Infrastructure (PI) has unrestricted directory permissions could allow an unauthenticated, remote attacker to upload an arbitrary file. Th…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-15379
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247540
|
8.6 |
HIGH
Network
|
cisco
|
ios
|
A vulnerability in the Cisco Network Plug and Play agent, also referred to as the Cisco Open Plug-n-Play agent, of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2018-15377
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
