Malicious Package

Overview @hcs-hybrid/uirouter-core is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

MAL-2026-4841 Malicious code in @hcs-hybrid/uirouter-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 27a0d7e172f9959faebfaed919369b4cd7a6321d9ae58986de045174908d431c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-6813 Malicious code in hcs-image-viewer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 28a35db26dad04831df161435cbbf5343e242f3ebc2fe7764b3feadd1926646c The OpenSSF Package Analysis project identified 'hcs-image-viewer' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

Malicious code in hcs-image-viewer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 28a35db26dad04831df161435cbbf5343e242f3ebc2fe7764b3feadd1926646c The OpenSSF Package Analysis project identified 'hcs-image-viewer' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

CVE-2015-4260

Cross-site scripting XSS vulnerability in Cisco Hosted Collaboration Solution 10.61 allows remote attackers to inject arbitrary web script or HTML via a crafted value in a URL, aka Bug ID CSCuu14862...

Cross site scripting

Cross-site scripting XSS vulnerability in Cisco Hosted Collaboration Solution 10.61 allows remote attackers to inject arbitrary web script or HTML via a crafted value in a URL, aka Bug ID CSCuu14862...

CVE-2015-0750

The CVE-2015-0750 issue affects Cisco Hosted Collaboration Solution (HCS) up to version 10.6(1) and earlier, where the Web management interface may allow remote authenticated attackers to execute arbitrary commands via crafted input in unspecified fields. Root cause is improper input validation i...

Cisco HCS Administrative Web Interface Arbitrary Command Execution Vulnerability

A vulnerability in the administrative web interface of Cisco Hosted Collaboration Solution HCS could allow an authenticated, remote attacker to execute arbitrary commands on the affected system and on the devices managed by the affected system. The vulnerability is due to improper user input...

Design/Logic Flaw

The SOAP interface in Cisco Hosted Collaboration Solution HCS allows remote attackers to obtain access to system-management tools via crafted Challenge SOAP calls, aka Bug ID CSCuc38114...

CVE-2015-0626

The CVE-2015-0626 issue affects Cisco Hosted Collaboration Solution (HCS) via the SOAP interface. The vulnerability stems from the SOAP processing of Challenge SOAP calls, enabling an unauthenticated, remote attacker to obtain access to system-management tools on vulnerable HCS deployments. Explo...

Cisco Hosted Collaboration Solution (HCS)拒绝服务漏洞

CVE ID: CVE-2014-2121 Cisco Hosted Collaboration Solution HCS是一种云服务，可提供通讯和合作解决方案。 Cisco Hosted Collaboration Solution HCS内基于Java的软件在实现上存在安全漏洞，可使远程攻击者造成拒绝服务。 0 Cisco Hosted Collaboration Solution HCS 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.cisco.com/web/solutions/hcs/index.html...

CVE-2014-2122

Memory leak in the GUI in the Impact server in Cisco Hosted Collaboration Solution HCS allows remote attackers to cause a denial of service memory consumption via unspecified vectors, aka Bug ID CSCub58999...

Design/Logic Flaw

The Java-based software in Cisco Hosted Collaboration Solution HCS allows remote attackers to cause a denial of service closing of TCP ports via unspecified vectors, aka Bug IDs CSCug77633, CSCug77667, CSCug78266, CSCug82795, and CSCuh58643...

Memory corruption

Memory leak in the GUI in the Impact server in Cisco Hosted Collaboration Solution HCS allows remote attackers to cause a denial of service memory consumption via unspecified vectors, aka Bug ID CSCub58999...

CVE-2014-2121

Cisco Hosted Collaboration Solution (HCS) runs Java-based software that contains a vulnerability due to improper packet processing in the Java code, allowing remote, unauthenticated attackers to cause a denial of service by closing TCP ports. The issue affects HCS deployments using the affected J...

CVE-2014-2122

Memory leak in the GUI in the Impact server in Cisco Hosted Collaboration Solution HCS allows remote attackers to cause a denial of service memory consumption via unspecified vectors, aka Bug ID CSCub58999...

CVE-2014-2122

Cisco Hosted Collaboration Solution (HCS) Impack server GUI contains a memory leak vulnerability that can cause DoS via remote, unauthenticated access. The issue stems from improper packet processing, enabling memory exhaustion on the GUI. Exploitation may require access to trusted internal netwo...

CVE-2013-5562

CVE-2013-5562 affects the ITM web server in Cisco Prime Central for Hosted Collaboration Solution (HCS). A remote attacker can cause a denial-of-service (temporary HTTP service outage) by flooding the ITM port with TCP packets. Root cause is the ITM port’s inability to handle a TCP flood. Exploit...

CVE-2013-5564

The Java process in the Impact server in Cisco Prime Central for Hosted Collaboration Solution HCS allows remote attackers to cause a denial of service process crash via a flood of TCP packets, aka Bug ID CSCug57345...

CVE-2013-5564

The Java process in the Impact server in Cisco Prime Central for Hosted Collaboration Solution HCS allows remote attackers to cause a denial of service process crash via a flood of TCP packets, aka Bug ID CSCug57345...