Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-0746

Malware in sbrugna...

4.3CVSS6.4AI score0.01559EPSS
Exploits0References3
CNVD
CNVD
added 2015/06/04 12:0 a.m.3 views

Cisco Headend Digital Broadband Delivery System Cross-Site Request Forgery Vulnerability

Cisco Headend Digital Broadband Delivery System is a digital broadband delivery system from Cisco USA. The system provides content protection, video-on-demand and dbd backup and recovery. A cross-site request forgery vulnerability exists in the Cisco Headend Digital Broadband Delivery System. A...

6.8CVSS6.9AI score0.00912EPSS
Exploits0References1
Prion
Prion
added 2015/06/02 2:59 p.m.17 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in Cisco Headend Digital Broadband Delivery System allows remote attackers to hijack the authentication of arbitrary users...

6.8CVSS7.7AI score0.00912EPSS
Exploits0References2
CVE
CVE
added 2015/06/02 2:0 p.m.42 views

CVE-2015-0759

Cisco Headend Digital Broadband Delivery System is affected by a CSRF vulnerability (CVE-2015-0759) where an unauthenticated attacker could cause actions in a user’s browser by tricking them into visiting a malicious link. Root cause: insufficient input validation on web requests. Impact: remote ...

6.8CVSS7.4AI score0.00912EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2015/05/30 2:59 p.m.13 views

Crlf injection

CRLF injection vulnerability in the HTTP Header Handler in Digital Broadband Delivery System in Cisco Headend System Release allows remote attackers to inject arbitrary HTTP headers, and conduct HTTP response splitting attacks or cross-site scripting XSS attacks, via a crafted request, aka Bug ID...

4.3CVSS6.2AI score0.01559EPSS
Exploits0References2
CVE
CVE
added 2015/05/30 2:0 p.m.50 views

CVE-2015-0733

Cisco Headend System Release Digital Broadband Delivery System is affected by a CRLF injection vulnerability in the HTTP Header Handler, enabling remote attackers to inject arbitrary HTTP headers and perform HTTP response-splitting attacks (potentially enabling XSS). The issue, tracked as CVE-201...

4.3CVSS6.1AI score0.01559EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/05/30 2:0 p.m.24 views

CVE-2015-0733

CRLF injection vulnerability in the HTTP Header Handler in Digital Broadband Delivery System in Cisco Headend System Release allows remote attackers to inject arbitrary HTTP headers, and conduct HTTP response splitting attacks or cross-site scripting XSS attacks, via a crafted request, aka Bug ID...

6AI score0.01559EPSS
Exploits0References2
Cisco
Cisco
added 2015/05/29 8:9 p.m.22 views

Cisco Headend Digital Broadband Delivery System HTTP Response-Splitting Vulnerability

A vulnerability in the Cisco Headend Digital Broadband Delivery System could allow an unauthenticated, remote attacker to conduct HTTP response-splitting attacks. The vulnerability is due to improper sanitization on user input performed by the HTTP Header Handler within the affected software...

4.3CVSS7.1AI score0.01559EPSS
Exploits0References1
NVD
NVD
added 2015/05/15 1:59 a.m.16 views

CVE-2015-0724

Multiple cross-site scripting XSS vulnerabilities in dncs 7.0.0.12 in Cisco Headend Digital Broadband Delivery System allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in a 1 GET or 2 POST request, aka Bug ID CSCur25604...

4.3CVSS5.8AI score0.01546EPSS
Exploits0References2
CVE
CVE
added 2015/05/15 1:0 a.m.49 views

CVE-2015-0724

CVE-2015-0724 affects Cisco Headend Digital Broadband Delivery System (dncs 7.0.0.12). The issue is cross-site scripting via HTTP GET/POST parameters due to improper input validation. Impact is that remote attackers can inject arbitrary script/HTML, with potential session-related consequences; CV...

4.3CVSS5.9AI score0.01546EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder