|
198671
|
6.1 |
MEDIUM
Network
|
cisco
|
data_center_network_manager
|
Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote attacker to inject arbitrary values into DCNM configuration parameters, redirect a user to a malicio…
|
CWE-601
Open Redirect
|
CVE-2017-12344
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198672
|
8.8 |
HIGH
Network
|
cisco
|
data_center_network_manager
|
Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote attacker to inject arbitrary values into DCNM configuration parameters, redirect a user to a malicio…
|
CWE-79
Cross-site Scripting
|
CVE-2017-12343
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198673
|
6.1 |
MEDIUM
Network
|
cisco
|
jabber
|
A vulnerability in the web-based management interface of Cisco Jabber for Windows, Mac, Android, and iOS could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack…
|
CWE-79
Cross-site Scripting
|
CVE-2017-12356
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198674
|
5.3 |
MEDIUM
Network
|
cisco
|
ios_xr
|
A vulnerability in the Local Packet Transport Services (LPTS) ingress frame-processing functionality of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause one of the LPTS …
|
CWE-20
Improper Input Validation
|
CVE-2017-12355
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198675
|
5.3 |
MEDIUM
Network
|
cisco
|
secure_access_control_system
|
A vulnerability in the web-based interface of Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to view sensitive information on an affected system. The vulnera…
|
CWE-200
Information Exposure
|
CVE-2017-12354
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198676
|
5.8 |
MEDIUM
Network
|
cisco
|
asyncos
|
A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypa…
|
NVD-CWE-noinfo
|
CVE-2017-12353
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198677
|
6.7 |
MEDIUM
Local
|
cisco
|
application_policy_infrastructure_controller
|
A vulnerability in certain system script files that are installed at boot time on Cisco Application Policy Infrastructure Controllers could allow an authenticated, local attacker to gain elevated pri…
|
CWE-77
Command Injection
|
CVE-2017-12352
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198678
|
5.7 |
MEDIUM
Local
|
cisco
|
nx-os
|
A vulnerability in the guest shell feature of Cisco NX-OS System Software could allow an authenticated, local attacker to read and send packets outside the scope of the guest shell container. An atta…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2017-12351
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198679
|
6.8 |
MEDIUM
Local
|
cisco
|
nx-os
|
A vulnerability in the Open Agent Container (OAC) feature of Cisco Nexus Series Switches could allow an unauthenticated, local attacker to read and send packets outside the scope of the OAC. The vuln…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2017-12342
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198680
|
6.7 |
MEDIUM
Local
|
cisco
|
unified_computing_system
nx-os
|
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. An attacker would need valid administrator credentials to…
|
CWE-77
Command Injection
|
CVE-2017-12341
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
