Memory corruption

A vulnerability in the TCP throttling process for Cisco IoT Field Network Director IoT-FND could allow an unauthenticated, remote attacker to cause the system to consume additional memory, eventually forcing the device to restart, aka Memory Exhaustion. The vulnerability is due to insufficient...

Design/Logic Flaw

The web GUI in Cisco Connected Grid Network Management System CG-NMS 3.00.35 and 3.00.54 allows remote authenticated users to bypass intended access restrictions and modify the configuration by leveraging the Monitor-Only role, aka Bug ID CSCuw42640...

CVE-2015-6362

The web GUI in Cisco Connected Grid Network Management System CG-NMS 3.00.35 and 3.00.54 allows remote authenticated users to bypass intended access restrictions and modify the configuration by leveraging the Monitor-Only role, aka Bug ID CSCuw42640...

CVE-2013-1163

Multiple SQL injection vulnerabilities in the device-management implementation in Cisco Connected Grid Network Management System CG-NMS allow remote attackers to execute arbitrary SQL commands via unspecified vectors, aka Bug IDs CSCue14553 and CSCue38746...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the element-list implementation in Cisco Connected Grid Network Management System CG-NMS allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug IDs CSCue14517, CSCue38914, CSCue38884, CSCue38882,...

CVE-2013-1171

Multiple cross-site scripting XSS vulnerabilities in the element-list implementation in Cisco Connected Grid Network Management System CG-NMS allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug IDs CSCue14517, CSCue38914, CSCue38884, CSCue38882,...