Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco security manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3820
Cisco Security Manager 3.1 and 3.2 prior to 3.2.2, when Cisco IPS Event Viewer (IEV) is used, exposes TCP ports used by the MySQL daemon and IEV server, which allows remote malicious users to obtain "root access" to IEV via unspecified use of TCP sessions to these ports...
Cisco Security Manager 3.2.1
Cisco Security Manager
Cisco Security Manager 3.1
Cisco Security Manager 3.2
Cisco Security Manager 3.1.1
NA
CVE-2014-2138
CRLF injection vulnerability in the web framework in Cisco Security Manager 4.2 and previous versions allows remote malicious users to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL, aka Bug ID CSCun82349.
Cisco Security Manager 3.1.1
Cisco Security Manager 3.1
Cisco Security Manager 3.0.2
Cisco Security Manager 3.3.1
Cisco Security Manager 3.3
Cisco Security Manager 3.2.1
Cisco Security Manager 3.2
Cisco Security Manager 4.1
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager 3.2.2
Cisco Security Manager
NA
CVE-2014-3266
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Security Manager 4.6 and previous versions allows remote malicious users to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun65189.
Cisco Security Manager
Cisco Security Manager 4.5
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager 4.3
Cisco Security Manager 4.2
Cisco Security Manager 4.4
Cisco Security Manager 4.1
NA
CVE-2014-3267
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Security Manager 4.6 and previous versions allows remote malicious users to hijack the authentication of arbitrary users for requests that make unspecified changes, aka Bug ID CSCuo46427.
Cisco Security Manager 4.4
Cisco Security Manager 4.3
Cisco Security Manager 4.5
Cisco Security Manager 4.2
Cisco Security Manager 4.1
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager
NA
CVE-2014-2118
Multiple cross-site scripting (XSS) vulnerabilities in dashboard-related HTML documents in Cisco Prime Security Manager (aka PRSM) 9.2(.1-2) and previous versions allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCun50687...
Cisco Prime Security Manager 9.1.2-42
Cisco Prime Security Manager 9.1.2-29
Cisco Prime Security Manager 9.1
Cisco Prime Security Manager 9.2
Cisco Prime Security Manager
Cisco Prime Security Manager 9.2.1-1
Cisco Prime Security Manager 9.1.3-10
Cisco Prime Security Manager 9.1.3-13
Cisco Prime Security Manager 9.1.3-8
Cisco Prime Security Manager 9.0
NA
CVE-2014-3326
SQL injection vulnerability in the web framework in Cisco Security Manager 4.5 and 4.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCup26957.
Cisco Security Manager 4.6
Cisco Security Manager 4.5
9.8
CVSSv3
CVE-2020-27125
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote malicious user to access sensitive information on an affected system. The vulnerability is due to insufficient protection of static credentials in the affected software. An attacker could exploit thi...
Cisco Security Manager
9.8
CVSSv3
CVE-2020-27131
Multiple vulnerabilities in the Java deserialization function that is used by Cisco Security Manager could allow an unauthenticated, remote malicious user to execute arbitrary commands on an affected device. These vulnerabilities are due to insecure deserialization of user-suppli...
Cisco Security Manager
9.1
CVSSv3
CVE-2020-27130
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote malicious user to gain access to sensitive information. The vulnerability is due to improper validation of directory traversal character sequences within requests to an affected device. An attacker c...
Cisco Security Manager
NA
CVE-2010-0594
Cross-site scripting (XSS) vulnerability in Cisco Router and Security Device Manager (SDM) allows remote malicious users to inject arbitrary web script or HTML via unknown vectors, aka Bug ID CSCtb38467.
Cisco Router And Security Device Manager
Cisco Router And Security Device Manager 2.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »