25 matches found
EUVD-2012-5864
Malware in sbrugna...
EUVD-2013-1210
Malware in sbrugna...
EUVD-2015-0781
Malware in sbrugna...
EUVD-2018-1305
Malware in sbrugna...
CVE-2013-1170
The Cisco Prime Network Control System NCS appliance with software before 1.1.1.24 has a default password for the database user account, which makes it easier for remote attackers to change the configuration or cause a denial of service service disruption via unspecified vectors, aka Bug ID...
CVE-2018-0482
Cisco Prime Network Control System (NCS) web-based management interface contains a stored XSS vulnerability due to insufficient validation of user-supplied input. An authenticated, remote attacker could lure a user into clicking a malicious link, causing arbitrary script execution in the web inte...
CVE-2018-0482 Cisco Prime Network Control System Stored Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to insufficient...
CVE-2018-0482
A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to insufficient...
CVE-2018-0482
A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to insufficient...
Cisco Prime Network Control System Stored Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to insufficient...
Cisco Prime Network Control System Version Detection
This Script performs SSH based detection of Cisco Prime Network Control System SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
CVE-2015-0768
The Device Work Center DWC component in Cisco Prime Network Control System NCS 2.10.0.85, 2.20.0.58, and 2.20.0.69 does not properly implement AAA roles, which allows remote authenticated users to bypass intended access restrictions and execute commands via a login session, aka Bug ID CSCur27371...
CVE-2015-0768
The Device Work Center DWC component in Cisco Prime Network Control System NCS 2.10.0.85, 2.20.0.58, and 2.20.0.69 does not properly implement AAA roles, which allows remote authenticated users to bypass intended access restrictions and execute commands via a login session, aka Bug ID CSCur27371...
Cisco Prime Network Control System Unauthorized Configuration Vulnerability
A vulnerability in the authentication, authorization, and accounting AAA user roles of the Cisco Prime Network Control System NCS network management application could allow an authenticated, remote attacker who is logged in as a system monitor user to perform configuration tasks. The vulnerabilit...
CVE-2012-5990
Multiple cross-site scripting XSS vulnerabilities in Health Monitor Login pages in Cisco Prime Network Control System NCS and Wireless Control System WCS allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCud18375...
Cisco Prime Network Control System (NCS) and Wireless Control System (WCS) vulnerable to cross-site scripting (XSS)
Overview Cisco Prime NCS and WCS Health Monitor Login pages contain a reflected cross-site scripting XSS vulnerability CWE-79. Description CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' Cisco Prime Network Control System NCS and Wireless Control System...
Cisco Prime Network / Wireless Control System Health Monitor Reflected XSS
The version of Health Monitor a component of Cisco Prime Network / Wireless Control System hosted on the remote web server is affected by a reflective cross-site scripting vulnerability. Input to the 'requestUrl' parameter is not properly sanitized. An attacker could exploit this by tricking a us...
Cisco Prime Network / Wireless Control System Health Monitor Detection
The web interface for Cisco Prime Network / Wireless Control System Health Monitor was detected on the remote host. Health Monitor is used to manage the high availability implementation for Network / Wireless Control System. C Tenable Network Security, Inc. include"compat.inc"; if description...
Cisco Prime Network Control System Default Credentials (cisco-sa-20130410-ncs)
According to its self-reported version, the remote host is running a release of Cisco Prime Network Control System prior to 1.1.2. As such, it reportedly has the following vulnerabilities : - The 'oracle' user account is secured with an unspecified, default password. CSCtz30468 - The 'wcsdba'...
Cisco Prime Network Control System Version
The remote host is running Cisco Prime Network Control System NCS, a network management system. It is possible to get the Prime NCS version number via SSH or SNMP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid66860; scriptversion"1.3"; scriptcvsdate"Date:...