CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2013-3390
https://notcve.org/view.php?id=CVE-2013-3390
Memory leak in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance 8.6 and 9.x before 9.2(1) allows remote attackers to cause a denial of service (memory consumption) via a flood of TCP packets, aka Bug ID CSCub59158. Fuga de memoria en Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance v8.6 y v9.x anterior a v9.2(1) permite a atacantes remotos provocar una denegación de servicio (consumo de memoria) a través de un flujo de paquetes TCP, también conocido como Bug ID CSCub59158. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130821-hcm • CWE-399: Resource Management Errors •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3398
https://notcve.org/view.php?id=CVE-2013-3398
The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance provides different responses to requests for arbitrary pathnames depending on whether the pathname exists, which allows remote attackers to enumerate directories and files via a series of crafted requests, aka Bug ID CSCuh64574. El framework we en Cisco Prime Central para Hosted Collaboration Solution (HCS) Assurance ofrece distintas respuestas para peticiones de nombres de rutas arbitrarios dependiendo de si el nombre de ruta existe, lo que permite a atacantes remotos listar los directorios y archivos a través de una serie de peticiones manipuladas. Aka Bug ID CSCuh64574. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3398 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3375
https://notcve.org/view.php?id=CVE-2013-3375
Cross-site scripting (XSS) vulnerability in the portal page in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCue23798. Vulnerabilidad XSS en la página del portal en Cisco Prime Central para Hosted Collaboration Solution, permite a atacantes remotos inyectar secuencias arbitrarias de comandos web o HTML a través una URL manipulada. Aka Bug ID CSCue23798. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3375 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3381
https://notcve.org/view.php?id=CVE-2013-3381
Cisco Hosted Collaboration Mediation allows remote attackers to cause a denial of service (CPU consumption) via a flood of malformed UDP packets on port 162, aka Bug ID CSCug85756. Cisco Hosted Collaboration Mediation permite a atacantes remotos causar una denegación de servicio (consumo de CPU) mediante un flood de paquetes UDP malformados al puerto 162, también conocido como Bug ID CSCug85756. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3381 • CWE-399: Resource Management Errors •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2013-1157
https://notcve.org/view.php?id=CVE-2013-1157
Cross-site scripting (XSS) vulnerability in the IBM Tivoli Monitoring (ITM) Java servlet container in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud51068. Vulnerabilidad XSS en el contenedor Java de IBM Tivoli Monitoring (ITM) en Cisco Prime Central para Hosted Collaboration Solution permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de un parámetro no especificado. Aka Bug ID CSCud51068. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1157 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •