12 C
London
Saturday, September 23, 2017

Cisco UCS Invicta Default SSH Key Vulnerability

A vulnerability in the implementation of intra-process communication for Cisco UCS Invicta Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulne...

Cisco IOS and IOS XE Software Smart Install Denial of Service...

The Smart Install client feature in Cisco IOS and IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability ...

Cisco IOS Software RADIUS Client Denial of Service Vulnerability

A vulnerability in the RADIUS client feature of Cisco IOS Software could allow an authenticated, remote attacker to cause a reload of the affected device. The vulnerability is due to improper parsing of malformed RADIUS packets re...

Multiple Vulnerabilities in Cisco Prime Data Center Network Manager

Cisco Prime Data Center Network Manager (DCNM) contains multiple vulnerabilities that could allow an unauthenticated, remote attacker to disclose file components, and access text files on an affected device. Various components of C...

Cisco Aironet 1850 Access Point Privilege Escalation Vulnerability

A vulnerability in the command-line interface (CLI) of the Cisco Aironet 1850 Series Access Point device could allow an authenticated, local attacker to obtain elevated privileges to the restricted shell on the device. The vulnera...

Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: April...

Product Cisco Bug ID Fixed Release Availability Cisco 3G Femtocell Wireless CSCuz44342 Affected systems will be updated Aug 2016 Cisco MeetingPlace CSCuz4439...

Cisco Prime Collaboration Provisioning Tool Inventory Management Feature Information Disclosure Vulnerability

A vulnerability in the Inventory Management feature of Cisco Prime Collaboration Provisioning Tool could allow an authenticated, remote attacker to view sensitive information on the system. The vulnerability is due to insufficient...

Cisco TelePresence Video Communication Server (VCS) Expressway Privilege Escalation Vulnerability

A vulnerability in the process management code of the Cisco TelePresence Video Communication Server (VCS) Expressway could allow an authenticated, local attacker to run arbitrary programs with elevated privileges. The vulnerabilit...

Cisco Meeting Server and Meeting App Buffer Underflow Vulnerability

Cisco has released free software updates that address the vulnerability described in this advisory.

Customers may only install and expect support for software versions and feature sets for which they have purchased a license.

By installing, downloading...

Cisco ASR 5000 Series StarOS SSH Subsystem Privilege Escalation Vulnerability

A privilege escalation vulnerability in the SSH subsystem in Cisco ASR 5000 Series devices running StarOS could allow an authenticated, remote attacker to elevate privileges.

The attacker would need to have a valid and configured S...

Multiple Vulnerabilities in Cisco IOS Software and IOS XE Software Autonomic...

The Autonomic Networking Infrastructure (ANI) feature of Cisco IOS Software and IOS XE Software has multiple vulnerabilities which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or gain...

Cisco Hybrid Media Service Privilege Escalation Vulnerability

A vulnerability in the installation procedure of the Cisco Hybrid Media Service could allow an authenticated, local attacker to elevate privileges to the root level. The vulnerability is due to incorrect installation and permissi...