|
260281
|
- |
|
cisco
|
prime_central_for_hosted_collaboration_solution
|
Cross-site scripting (XSS) vulnerability in the portal page in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via a crafted URL, …
|
CWE-79
Cross-site Scripting
|
CVE-2013-3375
|
2013-06-14 22:10 |
2013-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260282
|
- |
|
hp
|
insight_diagnostics
|
HP Insight Diagnostics 9.4.0.4710 allows remote attackers to conduct unspecified injection attacks via unknown vectors.
|
CWE-20
Improper Input Validation
|
CVE-2013-3573
|
2013-06-14 22:07 |
2013-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260283
|
- |
|
juniper
|
junos_pulse_secure_access_service
junos_pulse_access_control_service
|
Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS 7.0r2 through 7.0r8 and 7.1r1 through 7.1r5 and Junos Pulse Access Control Service (aka UAC) with UAC OS 4.1r1 through 4.1r5 includ…
|
CWE-310
Cryptographic Issues
|
CVE-2013-3970
|
2013-06-14 02:47 |
2013-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260284
|
- |
|
cisco
|
hosted_collaboration_solution
|
Cisco Hosted Collaboration Mediation allows remote attackers to cause a denial of service (CPU consumption) via a flood of malformed UDP packets on port 162, aka Bug ID CSCug85756.
|
CWE-399
Resource Management Errors
|
CVE-2013-3381
|
2013-06-12 13:00 |
2013-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260285
|
- |
|
cisco
|
nx-os
nexus_1000v
|
The SSL functionality in Cisco NX-OS on the Nexus 1000V does not properly verify X.509 certificates, which allows man-in-the-middle attackers to spoof servers, and intercept or modify Virtual Supervi…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1212
|
2013-06-11 13:00 |
2013-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260286
|
- |
|
filemaker
|
filemaker_pro
filemaker_pro_advanced
|
Cross-site scripting (XSS) vulnerability in the Instant Web Publish function in FileMaker Pro before 12 and Pro Advanced before 12 allows remote attackers to inject arbitrary web script or HTML via u…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3640
|
2013-06-11 13:00 |
2013-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260287
|
- |
|
linux
|
linux_kernel
|
The kvm_vm_ioctl_assign_device function in virt/kvm/assigned-dev.c in the KVM subsystem in the Linux kernel before 3.1.10 does not verify permission to access PCI configuration space and BAR resource…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4347
|
2013-06-11 02:30 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260288
|
- |
|
qnap
|
viostor_network_video_recorder
|
Cross-site request forgery (CSRF) vulnerability in cgi-bin/create_user.cgi on QNAP VioStor NVR devices with firmware 4.0.3 allows remote attackers to hijack the authentication of administrators for r…
|
CWE-352
Origin Validation Error
|
CVE-2013-0144
|
2013-06-10 22:19 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260289
|
- |
|
qnap
|
viostor_network_video_recorder
surveillance_station_pro
nas
|
QNAP VioStor NVR devices with firmware 4.0.3, and the Surveillance Station Pro component in QNAP NAS, have a hardcoded guest account, which allows remote attackers to obtain web-server login access v…
|
CWE-255
Credentials Management
|
CVE-2013-0142
|
2013-06-10 13:00 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260290
|
- |
|
qnap
|
viostor_network_video_recorder
surveillance_station_pro
nas
|
cgi-bin/pingping.cgi on QNAP VioStor NVR devices with firmware 4.0.3, and in the Surveillance Station Pro component in QNAP NAS, allows remote authenticated users to execute arbitrary commands by lev…
|
CWE-94
Code Injection
|
CVE-2013-0143
|
2013-06-10 13:00 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
