Emergency Responder Security Vulnerabilities and Issues — Emergency Responder CVE List

Lucene search

CiscoEmergency Responder

6 matches found

CVE•added 2015/12/13 3:59 a.m.•46 views

CVE-2015-6400

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Emergency Responder 10.5(1a) allow remote attackers to inject arbitrary web script or HTML via unspecified fields, aka Bug ID CSCuv25547.

4.3CVSS5.9AI score0.00263EPSS

CVE•added 2015/12/13 3:59 a.m.•37 views

CVE-2015-6407

Cisco Emergency Responder 10.5(3.10000.9) allows remote attackers to upload files to arbitrary locations via a crafted parameter, aka Bug ID CSCuv25501.

4CVSS7AI score0.00193EPSS

CVE•added 2014/04/04 3:10 p.m.•35 views

CVE-2014-2116

Cisco Emergency Responder (ER) 8.6 and earlier allows remote attackers to inject web pages and modify dynamic content via unspecified parameters, aka Bug ID CSCun37882.

4.3CVSS6.9AI score0.00377EPSS

CVE•added 2014/04/04 3:10 p.m.•34 views

CVE-2014-2117

Multiple open redirect vulnerabilities in Cisco Emergency Responder (ER) 8.6 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified parameters, aka Bug ID CSCun37909.

4.3CVSS7.1AI score0.00377EPSS

CVE•added 2014/04/04 3:10 p.m.•32 views

CVE-2014-2114

Cross-site scripting (XSS) vulnerability in UserServlet in Cisco Emergency Responder (ER) 8.6 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun24384.

4.3CVSS5.9AI score0.00277EPSS

CVE•added 2015/12/13 3:59 a.m.•30 views

CVE-2015-6406

Directory traversal vulnerability in the Tools menu in Cisco Emergency Responder 10.5(1.10000.5) allows remote authenticated users to write to arbitrary files via a crafted filename, aka Bug ID CSCuv21781.

4CVSS6.5AI score0.00425EPSS