Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco security manager 3.0.2 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2019-15958
A vulnerability in the REST API of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Manager (EPNM) could allow an unauthenticated remote malicious user to execute arbitrary code with root privileges on the underlying operating system. The vulnerability is du...
Cisco Prime Infrastructure
Cisco Prime Infrastructure 3.6
Cisco Evolved Programmable Network Manager
10
CVSSv2
CVE-2010-3036
Multiple buffer overflows in the authentication functionality in the web-server module in Cisco CiscoWorks Common Services prior to 4.0 allow remote malicious users to execute arbitrary code via a session on TCP port (1) 443 or (2) 1741, aka Bug ID CSCti41352.
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 3.3
Cisco Ciscoworks Common Services 3.0.5
Cisco Ciscoworks Common Services 3.0.6
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.1.1
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 2.0.3
Cisco Ciscoworks Lan Management Solution 3.0
Cisco Ciscoworks Lan Management Solution 3.1
Cisco Unified Service Monitor 2.0.1
Cisco Qos Policy Manager 4.0
Cisco Ciscoworks Lan Management Solution 3.2
Cisco Security Manager 3.0.2
Cisco Security Manager 3.2
Cisco Qos Policy Manager 4.0.1
Cisco Qos Policy Manager 4.0.2
Cisco Telepresence Readiness Assessment Manager 1.0
Cisco Unified Operations Manager 2.0.1
Cisco Ciscoworks Lan Management Solution 2.6
7.5
CVSSv2
CVE-2022-22965
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e....
Vmware Spring Framework
Cisco Cx Cloud Agent
Oracle Sd-wan Edge 9.0
Oracle Retail Xstore Point Of Service 20.0.1
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Financial Services Analytical Applications Infrastructure 8.1.1
Oracle Sd-wan Edge 9.1
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Oracle Product Lifecycle Analytics 3.6.1
Oracle Financial Services Enterprise Case Management 8.1.1.0
Oracle Financial Services Enterprise Case Management 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.2.0
Oracle Financial Services Behavior Detection Platform 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.1.0
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Communications Cloud Native Core Unified Data Repository 1.15.0
Oracle Communications Cloud Native Core Unified Data Repository 22.1.0
Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.0
171 Github repositories
7 Articles
5.8
CVSSv2
CVE-2021-3450
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve paramet...
Openssl Openssl
Freebsd Freebsd 12.2
Netapp Santricity Smi-s Provider Firmware -
Netapp Storagegrid Firmware -
Windriver Linux -
Windriver Linux 18.0
Windriver Linux 19.0
Windriver Linux 17.0
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Ontap Select Deploy Administration Utility -
Netapp Cloud Volumes Ontap Mediator -
Fedoraproject Fedora 34
Tenable Nessus Agent
Tenable Nessus
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Oracle Jd Edwards World Security A9.4
Oracle Weblogic Server 12.2.1.4.0
1 Github repository
1 Article
4.3
CVSSv2
CVE-2021-3449
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_ce...
Openssl Openssl
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Freebsd Freebsd 12.2
Netapp Santricity Smi-s Provider -
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager -
Netapp Cloud Volumes Ontap Mediator -
Netapp E-series Performance Analyzer -
Tenable Tenable.sc
Tenable Nessus
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Tenable Log Correlation Engine
Fedoraproject Fedora 34
5 Github repositories
1 Article
4.3
CVSSv2
CVE-2014-2138
CRLF injection vulnerability in the web framework in Cisco Security Manager 4.2 and previous versions allows remote malicious users to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL, aka Bug ID CSCun82349.
Cisco Security Manager 3.1.1
Cisco Security Manager 3.1
Cisco Security Manager 3.0.2
Cisco Security Manager 3.3.1
Cisco Security Manager 3.3
Cisco Security Manager 3.2.1
Cisco Security Manager 3.2
Cisco Security Manager 4.1
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager 3.2.2
Cisco Security Manager
NA
CVE-2022-20922
Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote malicious user to bypass the configured policies or cause a denial of service (DoS) condition on an affe...
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
Cisco Firepower Threat Defense 7.2.0
Cisco Umbrella Insights Virtual Appliance 1.5.5
Cisco Umbrella Insights Virtual Appliance 1.5.6
Cisco Umbrella Insights Virtual Appliance 2.0.0
Cisco Umbrella Insights Virtual Appliance 2.0.2
Cisco Umbrella Insights Virtual Appliance 2.0.3
Cisco Umbrella Insights Virtual Appliance 2.1.0
Cisco Umbrella Insights Virtual Appliance 2.1.2
Cisco Umbrella Insights Virtual Appliance 2.1.5
Cisco Umbrella Insights Virtual Appliance 2.1.4
Cisco Umbrella Insights Virtual Appliance 2.4.12
Cisco Umbrella Insights Virtual Appliance 2.4.6
Cisco Umbrella Insights Virtual Appliance 2.4
Cisco Umbrella Insights Virtual Appliance 2.4.4
Cisco Umbrella Insights Virtual Appliance 2.5
Cisco Umbrella Insights Virtual Appliance 2.5.4
Cisco Umbrella Insights Virtual Appliance 2.5.5
Cisco Umbrella Insights Virtual Appliance 2.5.6
NA
CVE-2022-20943
Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote malicious user to bypass the configured policies or cause a denial of service (DoS) condition on an affe...
Cisco Firepower Threat Defense 7.0.0
Cisco Firepower Threat Defense 7.0.1
Cisco Firepower Threat Defense 7.0.0.1
Cisco Firepower Threat Defense 7.0.1.1
Cisco Cyber Vision 4.0.2
Cisco Cyber Vision 3.0.0
Cisco Cyber Vision 3.0.1
Cisco Cyber Vision 3.0.2
Cisco Cyber Vision 3.0.3
Cisco Cyber Vision 3.0.5
Cisco Cyber Vision 3.0.6
Cisco Cyber Vision 3.1.0
Cisco Cyber Vision 3.1.2
Cisco Cyber Vision 3.1.1
Cisco Cyber Vision 3.2.3
Cisco Cyber Vision 3.2.1
Cisco Cyber Vision 3.2.4
Cisco Cyber Vision 3.2.0
Cisco Cyber Vision 3.2.2
Cisco Cyber Vision 4.0.0
Cisco Cyber Vision 4.0.1
Cisco Cyber Vision 4.0.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started