Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
id vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2017-12224
A vulnerability in the ability for guest users to join meetings via a hyperlink with Cisco Meeting Server could allow an authenticated, remote malicious user to enter a meeting with a hyperlink URL, even though access should be denied. The vulnerability is due to the incorrect im...
Cisco Meeting Server -
5.4
CVSSv3
CVE-2017-12227
A vulnerability in the SQL database interface for Cisco Emergency Responder could allow an authenticated, remote malicious user to conduct a blind SQL injection attack. The vulnerability is due to a failure to validate user-supplied input used in SQL queries that bypass protectio...
Cisco Emergency Responder -
5.3
CVSSv3
CVE-2017-12264
A vulnerability in the Web Admin Interface of Cisco Meeting Server could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition. The vulnerability is due to insufficient bound checks performed by the affected software. An attacker could explo...
Cisco Meeting Server
4.2
CVSSv3
CVE-2017-12266
A vulnerability in the routine that loads DLL files in Cisco Meeting App for Windows could allow an authenticated, local malicious user to run an executable file with privileges equivalent to those of Cisco Meeting App. The vulnerability is due to incomplete input validation of t...
Cisco Meeting App
5.8
CVSSv3
CVE-2017-12353
A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote malicious user to bypass configured user filters on the device. The vulnerability is due to impro...
Cisco Asyncos -
6.1
CVSSv3
CVE-2018-0356
A vulnerability in the web framework of Cisco WebEx could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against the user of the web interface of an affected system. The vulnerability is due to insufficient input validation of certa...
Cisco Webex Meetings T32
6.1
CVSSv3
CVE-2018-0390
A vulnerability in the web framework of Cisco Webex could allow an unauthenticated, remote malicious user to conduct a Document Object Model-based (DOM-based) cross-site scripting (XSS) attack against the user of the web interface of an affected system. The vulnerability is due t...
Cisco Webex Meetings 2.0
7
CVSSv3
CVE-2017-6728
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local malicious user to execute arbitrary code at the root privilege level on an affected system, because of Incorrect Permissions. More Information: CSCvb99389. Known Affected Releases: 6.2.1.BASE....
Cisco Ios Xr -
7.5
CVSSv3
CVE-2017-6763
A vulnerability in the implementation of the H.264 protocol in Cisco Meeting Server (CMS) 2.1.4 could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected system. The vulnerability exists because the affected application does...
Cisco Meeting Server 2.1.4
6.8
CVSSv3
CVE-2018-15396
A vulnerability in the Bulk Administration Tool (BAT) for Cisco Unity Connection could allow an authenticated, remote malicious user to cause high disk utilization, resulting in a denial of service (DoS) condition. The vulnerability exists because the affected software does not r...
Cisco Unity Connection 12.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »