|
252631
|
7.4 |
HIGH
Adjacent
|
cisco
|
meeting_server
|
A vulnerability in Cisco Meeting Server (CMS) could allow an unauthenticated, adjacent attacker to access services running on internal device interfaces of an affected system. The vulnerability is du…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2018-0263
|
2024-11-21 12:37 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252632
|
6.1 |
MEDIUM
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in the web framework of Cisco Unified Communications Manager and Cisco Unified Presence could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack …
|
CWE-79
Cross-site Scripting
|
CVE-2018-0328
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252633
|
6.1 |
MEDIUM
Network
|
cisco
|
identity_services_engine_software
|
A vulnerability in the web framework of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web i…
|
CWE-79
Cross-site Scripting
|
CVE-2018-0327
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252634
|
6.1 |
MEDIUM
Network
|
cisco
|
telepresence_tx9000_firmware
|
A vulnerability in the web UI of Cisco TelePresence Server Software could allow an unauthenticated, remote attacker to conduct a cross-frame scripting (XFS) attack against a user of the web UI of the…
|
CWE-693
Protection Mechanism Failure
|
CVE-2018-0326
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252635
|
7.5 |
HIGH
Network
|
cisco
|
ip_phone_8800_firmware
ip_phone_7800_firmware
|
A vulnerability in the Session Initiation Protocol (SIP) call-handling functionality of Cisco IP Phone 7800 Series phones and Cisco IP Phone 8800 Series phones could allow an unauthenticated, remote …
|
CWE-20
Improper Input Validation
|
CVE-2018-0325
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252636
|
6.7 |
MEDIUM
Local
|
cisco
|
network_functions_virtualization_infrastructure
|
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, high-privileged, local attacker to perform a command injection attack. The vulnerabili…
|
CWE-78
OS Command
|
CVE-2018-0324
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252637
|
6.5 |
MEDIUM
Network
|
cisco
|
network_functions_virtualization_infrastructure
|
A vulnerability in the web management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to conduct a path traversal attack on a targeted …
|
CWE-22
Path Traversal
|
CVE-2018-0323
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252638
|
5.8 |
MEDIUM
Network
|
cisco
|
firepower_threat_defense
|
A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote attacker to bypass a configured Secure Sockets Layer (SSL) Access Control (AC…
|
CWE-693
Protection Mechanism Failure
|
CVE-2018-0297
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252639
|
5.3 |
MEDIUM
Network
|
cisco
|
socialminer
|
A vulnerability in the TCP stack of Cisco SocialMiner could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition in the notification system. The vulnerability is due…
|
NVD-CWE-noinfo
|
CVE-2018-0290
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252640
|
6.1 |
MEDIUM
Network
|
cisco
|
identity_services_engine_software
|
A vulnerability in the logs component of Cisco Identity Services Engine could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper v…
|
CWE-79
Cross-site Scripting
|
CVE-2018-0289
|
2024-11-21 12:37 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
