| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2004-2104 | 5.0 |
Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to obtain sensitive server information, including the internal IP address, via a direct request to (1) snoop.jsp, (2) SnoopServlet, (3) env.bas, or (4) lcgitest.nlm.
|
30-10-2018 - 16:26 | 31-12-2004 - 05:00 | |
| CVE-2010-0182 | 4.3 |
The XMLDocument::load function in Mozilla Firefox before 3.5.9 and 3.6.x before 3.6.2, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 does not perform the expected nsIContentPolicy checks during loading of content by XML documents, which allows
|
30-10-2018 - 16:25 | 05-04-2010 - 17:30 | |
| CVE-2006-4128 | 6.5 |
Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 (all builds), Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 (builds 10.1.325.6301, 10.
|
17-10-2018 - 21:33 | 14-08-2006 - 23:04 | |
| CVE-2008-0169 | 6.8 |
Plugin/passwordauth.pm (aka the passwordauth plugin) in ikiwiki 1.34 through 2.47 allows remote attackers to bypass authentication, and login to any account for which an OpenID identity is configured and a password is not configured, by specifying an
|
08-08-2017 - 01:29 | 03-06-2008 - 15:32 | |
| CVE-2016-9937 | 5.0 |
An issue was discovered in Asterisk Open Source 13.12.x and 13.13.x before 13.13.1 and 14.x before 14.2.1. If an SDP offer or answer is received with the Opus codec and with the format parameters separated using a space the code responsible for parsi
|
27-07-2017 - 01:29 | 12-12-2016 - 21:59 | |
| CVE-2016-9210 | 5.0 |
A vulnerability in the Cisco Unified Reporting upload tool accessed via the Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to modify arbitrary files on the file system. More Information: CSCvb61698. Known Affecte
|
04-01-2017 - 14:43 | 14-12-2016 - 00:59 | |
| CVE-2016-9211 | 5.0 |
A vulnerability in TCP port management in Cisco ONS 15454 Series Multiservice Provisioning Platforms could allow an unauthenticated, remote attacker to cause the controller card to unexpectedly reload. More Information: CSCuw26032. Known Affected Rel
|
22-12-2016 - 21:11 | 14-12-2016 - 00:59 | |
| CVE-2016-9206 | 4.3 |
A vulnerability in the ccmadmin page of Cisco Unified Communications Manager (CUCM) could allow an unauthenticated, remote attacker to conduct reflected cross-site scripting (XSS) attacks. More Information: CSCvb64641. Known Affected Releases: 11.5(1
|
22-12-2016 - 21:11 | 14-12-2016 - 00:59 | |
| CVE-2016-9203 | 5.0 |
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) feature of Cisco ASR 5000 Series Software could allow an unauthenticated, remote attacker to cause a reload of the ipsecmgr process. More Information: CSCvb38398. Known Affected Releases:
|
22-12-2016 - 21:11 | 14-12-2016 - 00:59 | |
| CVE-2016-9207 | 6.4 |
A vulnerability in the HTTP traffic server component of Cisco Expressway could allow an unauthenticated, remote attacker to initiate TCP connections to arbitrary hosts. This does not allow for full traffic proxy through the Expressway. Affected Produ
|
22-12-2016 - 21:11 | 14-12-2016 - 00:59 | |
| CVE-2016-9202 | 4.3 |
A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) Switches could allow an unauthenticated, remote attacker to conduct a persistent cross-site scripting (XSS) attack against a user of the affected interface
|
22-12-2016 - 18:31 | 14-12-2016 - 00:59 | |
| CVE-2016-1411 | 4.3 |
A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SMA) could allow an unauthenticated, remote attacker
|
15-12-2016 - 15:18 | 14-12-2016 - 00:59 |