Cisco » Prime Central For Hosted Collaboration Solution : Security Vulnerabilities, CVEs,
The Java process in the Impact server in Cisco Prime Central for Hosted Collaboration Solution (HCS) allows remote attackers to cause a denial of service (process crash) via a flood of TCP packets, aka Bug ID CSCug57345.
Max CVSS
5.0
EPSS Score
0.13%
Published
2013-11-04
Updated
2013-11-06
The ITM web server in Cisco Prime Central for Hosted Collaboration Solution (HCS) allows remote attackers to cause a denial of service (temporary HTTP service outage) via a flood of TCP packets, aka Bug ID CSCuh36313.
Max CVSS
5.0
EPSS Score
0.13%
Published
2013-11-06
Updated
2013-11-07
The portal in Cisco Prime Central for Hosted Collaboration Solution (HCS) places cleartext credentials in temporary files, which allows local users to obtain sensitive information by leveraging weak file permissions to read these files, aka Bug IDs CSCuh33735 and CSCuh34230.
Max CVSS
4.3
EPSS Score
0.04%
Published
2013-10-10
Updated
2013-10-10
The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance provides different responses to requests for arbitrary pathnames depending on whether the pathname exists, which allows remote attackers to enumerate directories and files via a series of crafted requests, aka Bug ID CSCuh64574.
Max CVSS
5.0
EPSS Score
0.11%
Published
2013-06-26
Updated
2013-06-27
Cross-site scripting (XSS) vulnerability in the portal page in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCue23798.
Max CVSS
4.3
EPSS Score
0.10%
Published
2013-06-14
Updated
2013-06-14
Cross-site scripting (XSS) vulnerability in the OpenView web menus in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud56743.
Max CVSS
4.3
EPSS Score
0.10%
Published
2013-05-01
Updated
2013-05-01
Cross-site scripting (XSS) vulnerability in the Netcool Impact (NCI) web menus in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud56706.
Max CVSS
4.3
EPSS Score
0.10%
Published
2013-05-01
Updated
2013-05-01
Cross-site scripting (XSS) vulnerability in the IBM Tivoli Monitoring (ITM) help menus in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud54397.
Max CVSS
4.3
EPSS Score
0.10%
Published
2013-05-01
Updated
2013-05-01
Cross-site scripting (XSS) vulnerability in the IBM Tivoli Monitoring (ITM) Java servlet container in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud51068.
Max CVSS
4.3
EPSS Score
0.10%
Published
2013-05-01
Updated
2013-05-01
Directory traversal vulnerability in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to read arbitrary files via a crafted URL, aka Bug ID CSCud51034.
Max CVSS
5.0
EPSS Score
0.19%
Published
2013-05-01
Updated
2013-05-01
10 vulnerabilities found