|
248081
|
6.8 |
MEDIUM
Network
|
cisco
|
firepower_threat_defense
|
A vulnerability in the FTP inspection engine of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a den…
|
CWE-667
Improper Locking
|
CVE-2018-15390
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248082
|
9.8 |
CRITICAL
Network
|
cisco
|
prime_collaboration
|
A vulnerability in the install function of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to access the administrative web interface using a default hard…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2018-15389
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248083
|
9.8 |
CRITICAL
Network
|
cisco
|
digital_network_architecture_center
|
A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and have direct unauthorized access to critical management …
|
NVD-CWE-noinfo
|
CVE-2018-15386
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248084
|
7.5 |
HIGH
Network
|
cisco
|
firepower_threat_defense
adaptive_security_appliance_software
|
A vulnerability in the cryptographic hardware accelerator driver of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, …
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2018-15383
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248085
|
8.6 |
HIGH
Network
|
cisco
|
hyperflex_hx_data_platform
|
A vulnerability in Cisco HyperFlex Software could allow an unauthenticated, remote attacker to generate valid, signed session tokens. The vulnerability is due to a static signing key that is present …
|
CWE-642
External Control of Critical State Data
|
CVE-2018-15382
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248086
|
9.8 |
CRITICAL
Network
|
cisco
|
prime_infrastructure
|
A vulnerability in which the HTTP web server for Cisco Prime Infrastructure (PI) has unrestricted directory permissions could allow an unauthenticated, remote attacker to upload an arbitrary file. Th…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-15379
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248087
|
8.6 |
HIGH
Network
|
cisco
|
ios
|
A vulnerability in the Cisco Network Plug and Play agent, also referred to as the Cisco Open Plug-n-Play agent, of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2018-15377
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248088
|
6.7 |
MEDIUM
Local
|
cisco
|
ios
|
A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers could allow an authenticated, local attacker to write arbitrary values…
|
CWE-123
Write-what-where Condition
|
CVE-2018-15376
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248089
|
6.7 |
MEDIUM
Local
|
cisco
|
ios
|
A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers could allow an authenticated, local attacker to write arbitrary values…
|
CWE-123
Write-what-where Condition
|
CVE-2018-15375
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248090
|
6.7 |
MEDIUM
Local
|
cisco
|
ios_xe
|
A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authenticated, local attacker to install a malicious software image or file on an affected device. The vulner…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2018-15374
|
2024-11-21 12:50 |
2018-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
