Vulmon
Recent Vulnerabilities
Trends
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
big-ip local traffic manager vulnerabilities and exploits
(subscribe to this query)
6.2
CVSSv2
CVE-2014-8727
Multiple directory traversal vulnerabilities in F5 BIG-IP before 10.2.2 allow local users with the "Resource Administrator" or "Administrator" role to enumerate and delete arbitrary files via a .. (dot dot) in the name parameter to (1)...
F5
Big-ip Local Traffic Manager
1 EDB exploit available
4.3
CVSSv2
CVE-2014-9326
The automatic signature update functionality in the (1) Phone Home feature in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, GTM, and Link Controller 11.5.0 through 11.6.0, ASM 10.0.0 through 11.6.0, and PEM 11.3.0 through 11.6.0 and the (2) Call Home feature in ASM 10.0.0 through...
F5
Big-ip Access Policy Manager
Big-ip Advanced Firewall Manager
Big-ip Analytics
Big-ip Application Acceleration Manager
Big-ip Application Security Manager
Big-ip Global Traffic Manager
Big-ip Link Controller
Big-ip Local Traffic Manager
Big-ip Policy Enforcement Manager
Big-ip Policy Enforcement Manager11.5.1
6.8
CVSSv2
CVE-2013-4113
ext/xml/xml.c in PHP before 5.3.27 does not properly consider parsing depth, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted document that is processed by the xml_parse_into_struct...
Php
2 Github repositories available
5
CVSSv2
CVE-2011-4885
PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters....
Php
3 EDB exploits available
1 Metasploit module available
1 Github repository available
5
CVSSv2
CVE-2009-0048
OpenEvidence 1.0.6 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...
Openevidence
5
CVSSv2
CVE-2009-0124
The tqsl_verifyDataBlock function in openssl_cert.cpp in American Radio Relay League (ARRL) tqsllib 2.0 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed...
Arrl
Tqsllib
5
CVSSv2
CVE-2009-0049
Belgian eID middleware (eidlib) 2.6.0 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar...
Eid
Eidlib
5
CVSSv2
CVE-2009-0265
Internet Systems Consortium (ISC) BIND 9.6.0 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to...
Isc
Bind
5
CVSSv2
CVE-2009-0047
Gale 0.99 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...
Gale
5
CVSSv2
CVE-2009-0046
Sun GridEngine 5.3 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...
Sun
Grid Engine
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
CVE-2019-19781
CVE-2020-8521
CVE-2019-4323
mass assignment
CVE-2020-11994
blind SQL injection
CVE-2020-9498
CVE-2020-12736
1
2
3
NEXT »
Vulmon