CVEDB API

Vulnerabilities

Vulnerable Software

Cisco: >> Videoscape Distribution Suite Service Manager Security Vulnerabilities

CVE-2016-6418

Cross-site scripting (XSS) vulnerability in Cisco Videoscape Distribution Suite Service Manager (VDS-SM) 3.0 through 3.4.0 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCva14552.

CVSS Score

6.1

EPSS Score

0.003

Published

2016-10-05

CVE-2015-6417

Cisco Videoscape Distribution Suite Service Manager (VDS-SM) 3.4.0 and earlier does not always use RBAC for backend database access, which allows remote authenticated users to read or write to database entries via (1) the GUI or (2) a crafted HTTP request, aka Bug ID CSCuv87025.

CVSS Score

6.5

EPSS Score

0.001

Published

2015-12-12

CVE-2015-6364

Cisco Content Delivery System Manager Software 3.2 on Videoscape Distribution Suite Service Manager allows remote attackers to obtain sensitive information via crafted URLs in REST API requests, aka Bug ID CSCuv86960.

CVSS Score

5.0

EPSS Score

0.003

Published

2015-11-14

Page 1

Vulnerabilities

Vulnerable Software

Cisco: >> Videoscape Distribution Suite Service Manager Security Vulnerabilities

Products

Pricing

Contact Us