Emergency Responder Security Vulnerabilities and Issues — Emergency Responder CVE List

Lucene search

CiscoEmergency Responder

4 matches found

CVE•added 2015/12/13 3:59 a.m.•46 views

CVE-2015-6400

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Emergency Responder 10.5(1a) allow remote attackers to inject arbitrary web script or HTML via unspecified fields, aka Bug ID CSCuv25547.

4.3CVSS5.9AI score0.00263EPSS

CVE•added 2015/12/13 3:59 a.m.•37 views

CVE-2015-6405

Cross-site request forgery (CSRF) vulnerability in Cisco Emergency Responder 10.5(1) and 10.5(1a) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuv26501.

6.8CVSS7.4AI score0.00126EPSS

CVE•added 2015/12/13 3:59 a.m.•37 views

CVE-2015-6407

Cisco Emergency Responder 10.5(3.10000.9) allows remote attackers to upload files to arbitrary locations via a crafted parameter, aka Bug ID CSCuv25501.

4CVSS7AI score0.00193EPSS

CVE•added 2015/12/13 3:59 a.m.•30 views

CVE-2015-6406

Directory traversal vulnerability in the Tools menu in Cisco Emergency Responder 10.5(1.10000.5) allows remote authenticated users to write to arbitrary files via a crafted filename, aka Bug ID CSCuv21781.

4CVSS6.5AI score0.00425EPSS