| | CVE-2015-6330 |  Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in Cisco Prime Collaboration Assurance 10.5(1) and 1… | Nov 18, 2015 | May 6, 2026 |
| | CVE-2015-6357 | Cisco | medium | 6.8 | 5.9%
| | The rule-update feature in Cisco FireSIGHT Management Center (MC) 5.2 through 5.4.0.1 does not verif… | Nov 18, 2015 | May 6, 2026 |
| | CVE-2015-6376 | Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in Cisco TelePresence Video Communication Server (VC… | Nov 21, 2015 | May 6, 2026 |
| | CVE-2015-6377 | Cisco | high | 7.8 | 3.6%
| | Cisco Virtual Topology System (VTS) 2.0(0) and 2.0(1) allows remote attackers to cause a denial of s… | Nov 24, 2015 | May 6, 2026 |
| | CVE-2015-6382 | Cisco | medium | 5.0 | 0.5%
| | Cisco ASR 5000 devices with software 16.0(900) allow remote attackers to cause a denial of service (… | Nov 26, 2015 | May 6, 2026 |
| | CVE-2015-6386 | Cisco | medium | 5.0 | 0.4%
| | The passthrough FTP feature on Cisco Web Security Appliance (WSA) devices with software 8.0.7-142 an… | Dec 1, 2015 | May 6, 2026 |
| | CVE-2015-6390 | Cisco | medium | 4.3 | 0.4%
| | Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unity Connection 9.1(1… | Dec 3, 2015 | May 6, 2026 |
| | CVE-2015-6384 | Cisco | medium | 4.3 | 0.2%
| | The Cisco WebEx Meetings application before 8.5.1 for Android improperly initializes custom applicat… | Dec 5, 2015 | May 6, 2026 |
| | CVE-2015-6387 | Cisco | medium | 4.3 | 0.4%
| | Cross-site scripting (XSS) vulnerability in Cisco Unified Computing System (UCS) Central Software 1.… | Dec 5, 2015 | May 6, 2026 |
| | CVE-2015-6388 | Cisco | medium | 5.0 | 0.3%
| | Cisco Unified Computing System (UCS) Central software 1.3(0.1) allows remote attackers to conduct se… | Dec 5, 2015 | May 6, 2026 |
| | CVE-2015-6395 | Cisco | medium | 6.5 | 0.4%
| | Cisco Prime Service Catalog 10.0, 10.0(R2), 10.1, and 11.0 does not properly restrict access to web … | Dec 12, 2015 | May 6, 2026 |
| | CVE-2015-6417 | Cisco | medium | 6.5 | 0.1%
| | Cisco Videoscape Distribution Suite Service Manager (VDS-SM) 3.4.0 and earlier does not always use R… | Dec 12, 2015 | May 6, 2026 |
| | CVE-2015-6408 | Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in Cisco Unity Connection 11.5(0.98) allows remote a… | Dec 12, 2015 | May 6, 2026 |
| | CVE-2015-6419 | Cisco | medium | 6.8 | 0.2%
| | Cisco FireSIGHT Management Center with software 4.10.3, 5.2.0, 5.3.0, 5.3.1, and 5.4.0 allows remote… | Dec 12, 2015 | May 6, 2026 |
| | CVE-2015-6389 | Cisco | critical | 9.0 | 0.6%
| | Cisco Prime Collaboration Assurance before 11.0 has a hardcoded cmuser account, which allows remote … | Dec 13, 2015 | May 6, 2026 |
| | CVE-2015-6400 | Cisco | medium | 4.3 | 0.3%
| | Multiple cross-site scripting (XSS) vulnerabilities in Cisco Emergency Responder 10.5(1a) allow remo… | Dec 13, 2015 | May 6, 2026 |
| | CVE-2015-6405 | Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability in Cisco Emergency Responder 10.5(1) and 10.5(1a) al… | Dec 13, 2015 | May 6, 2026 |
| | CVE-2015-6406 | Cisco | medium | 4.0 | 0.4%
| | Directory traversal vulnerability in the Tools menu in Cisco Emergency Responder 10.5(1.10000.5) all… | Dec 13, 2015 | May 6, 2026 |
| | CVE-2015-6407 | Cisco | medium | 4.0 | 0.2%
| | Cisco Emergency Responder 10.5(3.10000.9) allows remote attackers to upload files to arbitrary locat… | Dec 13, 2015 | May 6, 2026 |
| | CVE-2015-6413 | Cisco | medium | 4.0 | 0.2%
| | Cisco TelePresence Video Communication Server (VCS) Expressway X8.6 allows remote authenticated user… | Dec 13, 2015 | May 6, 2026 |
| | CVE-2015-6414 | Cisco | low | 2.1 | 0.0%
| | Cisco TelePresence Video Communication Server (VCS) X8.6 uses the same encryption key across differe… | Dec 13, 2015 | May 6, 2026 |
| | CVE-2015-6418 | Cisco | medium | 4.3 | 0.4%
| | The random-number generator on Cisco Small Business RV routers 4.x and SA500 security appliances 2.2… | Dec 13, 2015 | May 6, 2026 |
| | CVE-2015-6378 | Cisco | medium | 6.8 | 0.1%
| | Cross-site request forgery (CSRF) vulnerability on Cisco DPQ3925 devices with EDVA 5.5.2 allows remo… | Dec 14, 2015 | May 6, 2026 |
| | CVE-2015-6410 | Cisco | medium | 4.0 | 0.2%
| | The Mobile and Remote Access (MRA) services implementation in Cisco Unified Communications Manager m… | Dec 14, 2015 | May 6, 2026 |
| | CVE-2015-6416 | Cisco | medium | 4.3 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco Unified Email Interaction Manager and Unified Web … | Dec 14, 2015 | May 6, 2026 |
| | CVE-2015-6422 | Cisco | medium | 4.0 | 0.5%
| | The self-service application in Cisco Unified Communications Domain Manager (CUCDM) 10.6(1) allows r… | Dec 14, 2015 | May 6, 2026 |
| | CVE-2015-4206 | Cisco | medium | 4.3 | 0.9%
| | Cisco Unified Communications Manager (UCM) 8.0 through 8.6 allows remote attackers to bypass an XSS … | Dec 15, 2015 | May 6, 2026 |
| | CVE-2015-6399 | Cisco | medium | 6.8 | 0.7%
| | The Supervisor 1.0.0.0 and 1.0.0.1 in Cisco Integrated Management Controller (IMC) before 2.0(9) all… | Dec 15, 2015 | May 6, 2026 |
| | CVE-2015-6404 | Cisco | medium | 4.0 | 0.2%
| | Cisco Hosted Collaboration Mediation Fulfillment 10.6(3) does not use RBAC, which allows remote auth… | Dec 15, 2015 | May 6, 2026 |
| | CVE-2015-6411 | Cisco | medium | 5.0 | 0.5%
| | Cisco FirePOWER Management Center 5.4.1.3, 6.0.0, and 6.0.1 provides verbose responses to requests f… | Dec 15, 2015 | May 6, 2026 |
| | CVE-2015-6425 | Cisco | medium | 5.0 | 0.5%
| | The WebApplications Identity Management subsystem in Cisco Unified Communications Manager 10.5(0.980… | Dec 16, 2015 | May 6, 2026 |
| | CVE-2015-6424 | Cisco | high | 7.2 | 0.1%
| | The boot manager in Cisco Application Policy Infrastructure Controller (APIC) 1.1(0.920a) allows loc… | Dec 18, 2015 | May 6, 2026 |
| | CVE-2015-6426 | Cisco | high | 7.2 | 0.1%
| | Cisco Prime Network Services Controller 3.0 allows local users to bypass intended access restriction… | Dec 18, 2015 | May 6, 2026 |
| | CVE-2015-6427 | Cisco | medium | 5.0 | 0.4%
| | Cisco FireSIGHT Management Center allows remote attackers to bypass the HTTP attack detection featur… | Dec 18, 2015 | May 6, 2026 |
| | CVE-2015-6409 | Cisco | medium | 5.9 | 0.3%
| | Cisco Jabber 10.6.x, 11.0.x, and 11.1.x on Windows allows man-in-the-middle attackers to conduct STA… | Dec 26, 2015 | May 6, 2026 |
| | CVE-2015-6433 | Cisco | medium | 6.5 | 0.2%
| | SQL injection vulnerability in Cisco Unified Communications Manager 11.0(0.98000.225) allows remote … | Jan 8, 2016 | May 6, 2026 |
| | CVE-2015-6434 | Cisco | medium | 6.1 | 0.2%
| | Cisco Prime Infrastructure does not properly restrict use of IFRAME elements, which makes it easier … | Jan 8, 2016 | May 6, 2026 |
| | CVE-2015-6314 | Cisco | critical | 9.8 | 1.1%
| | Cisco Wireless LAN Controller (WLC) devices with software 7.6.x, 8.0 before 8.0.121.0, and 8.1 befor… | Jan 15, 2016 | May 6, 2026 |
| | CVE-2015-6323 | Cisco | critical | 9.8 | 1.5%
| | The Admin portal in Cisco Identity Services Engine (ISE) 1.1.x, 1.2.0 before patch 17, 1.2.1 before … | Jan 15, 2016 | May 6, 2026 |
| | CVE-2016-1293 | Cisco | medium | 6.1 | 0.2%
| | Multiple cross-site scripting (XSS) vulnerabilities in the Management Center in Cisco FireSIGHT Syst… | Jan 16, 2016 | May 6, 2026 |
| | CVE-2016-1294 | Cisco | medium | 6.1 | 0.2%
| | Cross-site scripting (XSS) vulnerability in the Management Center in Cisco FireSIGHT System Software… | Jan 16, 2016 | May 6, 2026 |
| | CVE-2016-1296 | Cisco | high | 7.5 | 0.4%
| | The proxy engine on Cisco Web Security Appliance (WSA) devices with software 8.5.3-055, 9.1.0-000, a… | Jan 20, 2016 | May 6, 2026 |
| | CVE-2015-6435 | Cisco | critical | 9.8 | 16.0%
| | An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Co… | Jan 22, 2016 | May 6, 2026 |
| | CVE-2015-6317 | Cisco | medium | 6.5 | 0.1%
| | Cisco Identity Services Engine (ISE) before 2.0 allows remote authenticated users to bypass intended… | Jan 23, 2016 | May 6, 2026 |
| | CVE-2015-6337 | Cisco | medium | 6.1 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco Application Policy Infrastructure Controller Enter… | Jan 26, 2016 | May 6, 2026 |
| | CVE-2016-1298 | Cisco | medium | 6.1 | 0.2%
| | Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Contact Center Express 10.0(1),… | Jan 26, 2016 | May 6, 2026 |
| | CVE-2015-6421 | Cisco | high | 7.5 | 0.5%
| | cifs-ao in the CIFS optimization functionality on Cisco Wide Area Application Service (WAAS) and Vir… | Jan 27, 2016 | May 6, 2026 |
| | CVE-2016-1300 | Cisco | medium | 6.1 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco Unity Connection (UC) 10.5(2.3009) allows remote a… | Jan 27, 2016 | May 6, 2026 |
| | CVE-2016-1304 | Cisco | medium | 6.1 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco Unity Connection 10.5(2.3009) allows remote attack… | Jan 30, 2016 | May 6, 2026 |
| | CVE-2016-1311 | Cisco | medium | 6.1 | 0.3%
| | Cross-site scripting (XSS) vulnerability in the management interface in Cisco Jabber Guest Server 10… | Feb 6, 2016 | May 6, 2026 |