Skip to main content
CVE-2014-1636 HIGH POC This Week

Multiple SQL injection vulnerabilities in Command School Student Management System 1.06.01 allow remote attackers to execute arbitrary SQL commands via the id parameter in an edit action to (1). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Command School Student Management System
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
3.5%
CVE-2014-0661 HIGH This Week

The System Status Collection Daemon (SSCD) in Cisco TelePresence System 500-37, 1000, 1300-65, and 3xxx before 1.10.2(42), and 500-32, 1300-47, TX1310 65, and TX9xxx before 6.0.4(11), allows remote. Rated high severity (CVSS 8.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Cisco Code Injection RCE +14
NVD
CVSS 2.0
8.3
EPSS
4.0%
CVE-2014-0662 HIGH This Week

The SIP module in Cisco TelePresence Video Communication Server (VCS) before 8.1 allows remote attackers to cause a denial of service (process failure) via a crafted SDP message, aka Bug ID. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Cisco Telepresence Video Communication Server Software Telepresence Video Communication Servers Software
NVD
CVSS 2.0
7.1
EPSS
1.5%
CVE-2014-0660 HIGH This Week

Cisco TelePresence ISDN Gateway with software before 2.2(1.92) allows remote attackers to cause a denial of service (D-channel call outage) via a crafted Q.931 STATUS message, aka Bug ID CSCui50360. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Cisco Telepresence Isdn Gateway Software
NVD
CVSS 2.0
7.1
EPSS
1.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy