CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2015-6313
https://notcve.org/view.php?id=CVE-2015-6313
06 Apr 2016 — Cisco TelePresence Server 4.1(2.29) through 4.2(4.17) on 7010; Mobility Services Engine (MSE) 8710; Multiparty Media 310, 320, and 820; and Virtual Machine (VM) devices allows remote attackers to cause a denial of service (memory consumption or device reload) via crafted HTTP requests that are not followed by an unspecified negotiation, aka Bug ID CSCuv47565. Cisco TelePresence Server 4.1(2.29) hasta la versión 4.2(4.17) sobre dispositivos 7010; Mobility Services Engine (MSE) 8710; Multiparty Media 310, 320... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-cts1 • CWE-399: Resource Management Errors •
CVSS: 8.1EPSS: 0%CPEs: 14EXPL: 0CVE-2016-1290
https://notcve.org/view.php?id=CVE-2016-1290
06 Apr 2016 — The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allows remote authenticated users to bypass intended RBAC restrictions and gain privileges via an HTTP request that is inconsistent with a pattern filter, aka Bug ID CSCuy10227. La API web en Cisco Prime Infrastructure 1.2.0 hasta la versión 2.2(2) y Cisco Evolved Programmable Network Manager (EPNM) 1.2 permite a usuarios remotos autenticados eludir restricciones RBAC previstas y obtener ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-privauth • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 2%CPEs: 14EXPL: 0CVE-2016-1291
https://notcve.org/view.php?id=CVE-2016-1291
06 Apr 2016 — Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allow remote attackers to execute arbitrary code via crafted deserialized data in an HTTP POST request, aka Bug ID CSCuw03192. Cisco Prime Infrastructure 1.2.0 hasta la versión 2.2(2) y Cisco Evolved Programmable Network Manager (EPNM) 1.2 permiten a atacantes remotos ejecutar código arbitrario a través de datos deserializados manipulados en una petición HTTP POST, también conocido como Bug ID CSCuw0319... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-remcode • CWE-20: Improper Input Validation •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2016-1314
https://notcve.org/view.php?id=CVE-2016-1314
28 Mar 2016 — Cross-site scripting (XSS) vulnerability in Cisco Unified Communications Domain Manager (CDM) 8.1(1) allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCux80760. Vulnerabilidad de XSS en Cisco Unified Communications Domain Manager (CDM) 8.1(1) permite a usuarios remotos autenticados inyectar secuencias de comandos web o HTML arbitrarios a través de una URL manipulada, también conocida como Bug ID CSCux80760. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160328-ucdm • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.1EPSS: 4%CPEs: 108EXPL: 0CVE-2016-1344
https://notcve.org/view.php?id=CVE-2016-1344
26 Mar 2016 — The IKEv2 implementation in Cisco IOS 15.0 through 15.6 and IOS XE 3.3 through 3.17 allows remote attackers to cause a denial of service (device reload) via fragmented packets, aka Bug ID CSCux38417. La implementación de IKEv2 en Cisco IOS hasta la versión 15.6 y IOS XE 3.3 hasta la versión 3.17 permite a atacantes remotos provocar una denegación de servicio (recarga de dispositivo) a través de paquetes fragmentados, también conocido como Bug ID CSCux38417. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-ios-ikev2 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 1%CPEs: 82EXPL: 0CVE-2016-1348
https://notcve.org/view.php?id=CVE-2016-1348
26 Mar 2016 — Cisco IOS 15.0 through 15.5 and IOS XE 3.3 through 3.16 allow remote attackers to cause a denial of service (device reload) via a crafted DHCPv6 Relay message, aka Bug ID CSCus55821. Cisco IOS 15.0 hasta la versión 15.5 y IOS XE 3.3 hasta la versión 3.16 permiten a atacantes remotos provocar una denegación de servicio (recarga de dispositivo) a través de un mensaje DHCPv6 Relay manipulado, también conocido como Bug ID CSCus55821. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-dhcpv6 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 1%CPEs: 38EXPL: 0CVE-2016-1349
https://notcve.org/view.php?id=CVE-2016-1349
26 Mar 2016 — The Smart Install client implementation in Cisco IOS 12.2, 15.0, and 15.2 and IOS XE 3.2 through 3.7 allows remote attackers to cause a denial of service (device reload) via crafted image list parameters in a Smart Install packet, aka Bug ID CSCuv45410. La implementación del cliente Smart Install en Cisco IOS 12.2, 15.0 y 15.2 y IOS XE 3.2 hasta la versión 3.7 permite a atacantes remotos provocar una denegación de servicio (recarga de dispositivo) a través de parámetros de lista de imágenes manipulados en u... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-smi • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 2%CPEs: 18EXPL: 0CVE-2016-1350
https://notcve.org/view.php?id=CVE-2016-1350
26 Mar 2016 — Cisco IOS 15.3 and 15.4, Cisco IOS XE 3.8 through 3.11, and Cisco Unified Communications Manager allow remote attackers to cause a denial of service (device reload) via malformed SIP messages, aka Bug ID CSCuj23293. Cisco IOS 15.3 y 15.4, Cisco IOS XE 3.8 hasta la versión 3.11 y Cisco Unified Communications Manager permiten a atacantes remotos provocar una denegación de servicio (recarga de dispositivo) a través de mensajes SIP mal formados, también conocido como Bug ID CSCuj23293. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-sip • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 12%CPEs: 65EXPL: 0CVE-2015-0718
https://notcve.org/view.php?id=CVE-2015-0718
03 Mar 2016 — Cisco NX-OS 4.0 through 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows remote attackers to cause a denial of service (TCP stack reload) by sending crafted TCP packets to a device that has a TIME_WAIT TCP session, aka Bug ID CSCub70579. Cisco NX-OS 4.0 hasta la versión 6.1 en dispositivos Nexus 1000V 3000, 4000, 5000, 6000 y 7000 y plataformas Unified Computing System (UCS) permite a atancantes remotos causar una denegación de servicio (recarga... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-netstack • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 3%CPEs: 14EXPL: 0CVE-2016-1329
https://notcve.org/view.php?id=CVE-2016-1329
03 Mar 2016 — Cisco NX-OS 6.0(2)U6(1) through 6.0(2)U6(5) on Nexus 3000 devices and 6.0(2)A6(1) through 6.0(2)A6(5) and 6.0(2)A7(1) on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a (1) TELNET or (2) SSH session, aka Bug ID CSCuy25800. Cisco NX-OS 6.0(2)U6(1) hasta la versión 6.0(2)U6(5) en dispositivos Nexus 3000 y 6.0(2)A6(1) hasta la versión 6.0(2)A6(5) y 6.0(2)A7(1) en dispositivos Nexus 3500 tiene credenciales embebidas, lo que permite a atacantes remotos ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-n3k • CWE-287: Improper Authentication •