Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-03 | CVE-2017-6624 | Improper Authentication vulnerability in Cisco IOS 15.5(3)M A vulnerability in Cisco IOS 15.5(3)M Software for Cisco CallManager Express (CME) could allow an unauthenticated, remote attacker to make unauthorized phone calls. | 5.3 |
| 2017-05-03 | CVE-2017-6620 | Improper Input Validation vulnerability in Cisco Small Business RV Series Router Firmware 1.0.1.19 A vulnerability in the remote management access control list (ACL) feature of the Cisco CVR100W Wireless-N VPN Router could allow an unauthenticated, remote attacker to bypass the remote management ACL. | 5.8 |
| 2017-05-03 | CVE-2016-0382 | Information Exposure vulnerability in IBM Tealeaf Consumer Experience The IBM Tealeaf Consumer Experience 8.7, 8.8, and 9.0 portal exposes some of its operational state in a form that may be accidentally captured and exposed by network infrastructure components such as IIS. | 4.0 |
| 2017-05-03 | CVE-2017-8459 | Unspecified vulnerability in Brave 0.12.4 Brave 0.12.4 has a Status Bar Obfuscation issue in which a redirection target is shown in a possibly unexpected way. | 6.5 |
| 2017-05-03 | CVE-2017-8458 | Injection vulnerability in Brave 0.12.4 Brave 0.12.4 has a URI Obfuscation issue in which a string such as https://[email protected]/ is displayed without a clear UI indication that it is not a resource on the safe.example.com web site. | 6.5 |
| 2017-05-03 | CVE-2016-10368 | Open Redirect vulnerability in Opsview Open redirect vulnerability in Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x without a certain 2016 security patch) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the back parameter to the /login URI. | 6.1 |
| 2017-05-03 | CVE-2015-9058 | Open Redirect vulnerability in Proxmox Mail Gateway Open redirect vulnerability in Proxmox Mail Gateway prior to hotfix 4.0-8-097d26a9 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the destination parameter. | 6.1 |
| 2017-05-03 | CVE-2015-9057 | Cross-site Scripting vulnerability in Proxmox Mail Gateway Multiple cross-site scripting (XSS) vulnerabilities in Proxmox Mail Gateway prior to hotfix 4.0-8-097d26a9 allow remote attackers to inject arbitrary web script or HTML via multiple parameters, related to /users/index.htm, /quarantine/spam/manage.htm, /quarantine/spam/whitelist.htm, /queues/mail/index/, /system/ssh.htm, /queues/mail/?domain=, and /quarantine/virus/manage.htm. | 6.1 |
| 2017-05-03 | CVE-2017-7430 | Cross-site Scripting vulnerability in multiple products Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a persistent XSS vulnerability in Framework. | 6.1 |
| 2017-05-03 | CVE-2017-7428 | Improper Input Validation vulnerability in Netiq Imanager NetIQ iManager 3.x before 3.0.3.1 has an issue in the renegotiation of connection parameters with Tomcat. | 5.3 |