Sun

Opensolaris

113 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2016-1331

  • EPSS 0.25%
  • Veröffentlicht 15.02.2016 23:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Emergency Responder 11.5(0.99833.5) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuy10766.

5.3

CVE-2016-1319

  • EPSS 0.16%
  • Veröffentlicht 09.02.2016 03:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco Unified Communications Manager (aka CallManager) 9.1(2.10000.28), 10.5(2.10000.5), 10.5(2.12901.1), and 11.0(1.10000.10); Unified Communications Manager IM & Presence Service 10.5(2); Unified Contact Center Express 11.0(1); and Unity Connection...

9

CVE-2016-1302

  • EPSS 0.23%
  • Veröffentlicht 07.02.2016 11:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco Application Policy Infrastructure Controller (APIC) devices with software before 1.0(3h) and 1.1 before 1.1(1j) and Nexus 9000 ACI Mode switches with software before 11.0(3h) and 11.1 before 11.1(1j) allow remote authenticated users to bypass i...

6.1

CVE-2016-1310

  • EPSS 0.25%
  • Veröffentlicht 06.02.2016 05:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in Cisco Unity Connection 11.5(0.199) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuy09033.

6.1

CVE-2016-1306

  • EPSS 0.25%
  • Veröffentlicht 06.02.2016 05:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Fog Director 1.0(0) allow remote attackers to inject arbitrary web script or HTML via a crafted parameter, aka Bug ID CSCux80466.

10

CVE-2015-6319

  • EPSS 0.81%
  • Veröffentlicht 27.01.2016 22:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

SQL injection vulnerability in the web-based management interface on Cisco RV220W devices allows remote attackers to execute arbitrary SQL commands via a crafted header in an HTTP request, aka Bug ID CSCuv29574.

8.5

CVE-2008-7300

  • EPSS 0.27%
  • Veröffentlicht 05.10.2011 02:56:24
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The labeled networking implementation in Solaris Trusted Extensions in Sun Solaris 10 and OpenSolaris snv_39 through snv_67, when a labeled zone is in the installed state, allows remote authenticated users to bypass a Mandatory Access Control (MAC) p...

4

CVE-2009-4774

  • EPSS 0.04%
  • Veröffentlicht 21.04.2010 14:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Sun Solaris 10 and OpenSolaris snv_49 through snv_117, when 64bit mode is used on the Intel x86 platform and a Linux (lx) branded zone is configured, allows local users to cause a denial of service (panic) via unspecified...

7.5

CVE-2010-0558

  • EPSS 0.4%
  • Veröffentlicht 05.02.2010 22:30:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The default configuration of Oracle OpenSolaris snv_77 through snv_131 allows attackers to have an unspecified impact via vectors related to using smbadm to join a Windows Active Directory domain.

7.5

CVE-2010-0559

  • EPSS 0.4%
  • Veröffentlicht 05.02.2010 22:30:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The default configuration of Oracle OpenSolaris snv_91 through snv_131 allows attackers to have an unspecified impact via vectors related to using kclient to join a Windows Active Directory domain.