398 matches found
Cisco Prime Infrastructure Cross-Site Scripting Vulnerability (CNVD-2019-02814)
Cisco Prime Infrastructure PI is a set of Cisco Prime LAN Management Solution LMS and Cisco Prime Network Control System NCS technologies for wireless management. solution. A cross-site scripting vulnerability exists in the web-based management interface of Cisco PI, which stems from a failure of...
CVE-2019-1643
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of the affected software. The vulnerability is due to insufficient...
Cisco TelePresence Management Suite Cross-Site Scripting Vulnerability
Cisco TelePresence is a telepresence conferencing solution developed by Cisco. A cross-site scripting vulnerability exists in the web-based management interface in Cisco TelePresence Management Suite TMS, which can be exploited by a remote attacker with the help of a specially crafted link to...
IBM QRadar SIEM Information Disclosure Vulnerability (CNVD-2018-25033)
IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. A security...
NetGain Enterprise Manager Cross-Site Scripting Vulnerability
NetGain Enterprise Manager EM is a plug-and-play hardware IT infrastructure monitoring and management appliance developed by NetGain Systems. A stored cross-site scripting vulnerability exists in NetGain Enterprise Manager EM before 10.1.12, which can be exploited by remote attackers to execute...
Mitel MiVoice Office 400 web admin component cross-site scripting vulnerability
Mitel MiVoice Office 400 is a small and medium-sized business communications solution from Mitel Canada. The product includes features such as video conferencing, voice calls, etc. web admin is one of the web-based management components. A cross-site scripting vulnerability exists in the web admi...
Cross-Site Scripting Vulnerability in Multiple Cisco Products
Cisco Webex Events Center, etc. are video conferencing solutions from Cisco USA. A cross-site scripting vulnerability exists in the web-based management interface of several Cisco products, which can be exploited by remote attackers to execute arbitrary script code in the context of the affected...
CVE-2018-15400
A vulnerability in the web-based management interface of Cisco Cloud Services Platform 2100 could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability is due to...
CVE-2018-6053
Inappropriate implementation in New Tab Page in Google Chrome prior to 64.0.3282.119 allowed a local attacker to view website thumbnail images after clearing browser data via a crafted HTML page...
Design/Logic Flaw
Inappropriate implementation in New Tab Page in Google Chrome prior to 64.0.3282.119 allowed a local attacker to view website thumbnail images after clearing browser data via a crafted HTML page...
CVE-2018-6053
Inappropriate implementation in New Tab Page in Google Chrome prior to 64.0.3282.119 allowed a local attacker to view website thumbnail images after clearing browser data via a crafted HTML page...
CVE-2018-6053
Removed by vendor...
CVE-2018-6053
Inappropriate implementation in New Tab Page in Google Chrome prior to 64.0.3282.119 allowed a local attacker to view website thumbnail images after clearing browser data via a crafted HTML page...
Cisco Data Center Network Manager Cross-Site Scripting Vulnerability
Cisco Data Center Network Manager is a data center management system from Cisco. The system works with Cisco Nexus and MDS series switches and provides storage visualization, configuration and troubleshooting. A cross-site scripting vulnerability exists in the web-based management interface of...
Cisco Unified Communications Domain Manager Software Cross-Site Scripting Vulnerability
Cisco Unified Communications Domain Manager Software is the United States Cisco Cisco company developed a dedicated call processing components in the unified communications solution. The component has scalable, distributable, and highly available enterprise voice-over-IP call processing...
CVE-2018-0386
A vulnerability in Cisco Unified Communications Domain Manager Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack on an affected system. The vulnerability is due to improper validation of input that is passed to the affected software. An attacker...
CVE-2018-0411
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability is due...
Security Bulletin: Cacheable SSL Page vulnerability affects IBM Security Guardium Database Activity Monitor (CVE-2016-0237)
Summary IBM Security Guardium Database Activity Monitor contains locally cached browser data, that could allow a local attacker to obtain sensitive information. Vulnerability Details CVEID: CVE-2016-0237 DESCRIPTION: IBM Security Guardium Database Activity Monitor contains locally cached browser...
CVE-2018-0339
A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based interface. The vulnerability is due to insufficient input validation of some...
CVE-2018-0251
A vulnerability in the Web Server Authentication Required screen of the Clientless Secure Sockets Layer SSL VPN portal of Cisco Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of that portal on an...