Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco prime lan management solution - vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2016-1360
Cisco Prime LAN Management Solution (LMS) up to and including 4.2.5 uses the same database decryption key across different customers' installations, which allows local users to obtain cleartext data by leveraging console connectivity, aka Bug ID CSCuw85390.
Cisco Prime Lan Management Solution 4.2 Base
Cisco Prime Lan Management Solution 4.2.1
Cisco Prime Lan Management Solution 4.2.3
Cisco Prime Lan Management Solution 4.2.5
Cisco Prime Lan Management Solution 4.2.4
Cisco Prime Lan Management Solution 4.2.2
Cisco Prime Lan Management Solution 4.1 Base
NA
CVE-2012-6392
Cisco Prime LAN Management Solution (LMS) 4.1 up to and including 4.2.2 on Linux does not properly validate authentication and authorization requests in TCP sessions, which allows remote malicious users to execute arbitrary commands via a crafted session, aka Bug ID CSCuc79779.
Cisco Prime Lan Management Solution 4.1
Cisco Prime Lan Management Solution 4.2
Cisco Prime Lan Management Solution 4.2.1
Cisco Prime Lan Management Solution 4.2.2
NA
CVE-2015-0594
Multiple cross-site scripting (XSS) vulnerabilities in the help pages in Cisco Common Services, as used in Cisco Prime LAN Management Solution (LMS) and Cisco Security Manager, allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug...
Cisco Security Manager
Cisco Prime Lan Management Solution -
6.5
CVSSv3
CVE-2017-12225
A vulnerability in the web functionality of the Cisco Prime LAN Management Solution could allow an authenticated, remote malicious user to hijack another user's administrative session, aka a Session Fixation Vulnerability. The vulnerability is due to the reuse of a preauthen...
Cisco Prime Lan Management Solution 4.2(5)
NA
CVE-2013-5482
Cisco Prime LAN Management Solution (LMS) does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)"...
Cisco Prime Lan Management Solution -
NA
CVE-2013-1196
The command-line interface in Cisco Secure Access Control System (ACS), Identity Services Engine Software, Context Directory Agent, Application Networking Manager (ANM), Prime Network Control System, Prime LAN Management Solution (LMS), Prime Collaboration, Unified Provisioning M...
Cisco Prime Network Control System -
Cisco Secure Access Control System -
Cisco Prime Collaboration -
Cisco Prime Data Center Network Manager -
Cisco Network Services Manager -
Cisco Application Networking Manager -
Cisco Quad -
Cisco Context Directory Agent -
Cisco Unified Provisioning Manager -
Cisco Prime Lan Management Solution -
Cisco Identity Services Engine Software -
NA
CVE-2013-5488
Cisco Common Services, as used in Cisco Prime LAN Management Solution (LMS), Cisco Security Manager, Cisco Unified Service Monitor, and Cisco Unified Operations Manager, does not properly interact with the ActiveMQ component, which allows remote malicious users to cause a denial ...
Cisco Unified Service Monitor -
Cisco Unified Operations Manager -
Cisco Security Manager
Cisco Prime Lan Management Solution -
NA
CVE-2013-1125
The command-line interface in Cisco Identity Services Engine Software, Secure Access Control System (ACS), Application Networking Manager (ANM), Prime LAN Management Solution (LMS), Prime Network Control System, Quad, Context Directory Agent, Prime Collaboration, Unified Provisio...
Cisco Prime Network Control System -
Cisco Secure Access Control System -
Cisco Prime Collaboration -
Cisco Network Services Manager -
Cisco Application Networking Manager -
Cisco Quad -
Cisco Context Directory Agent -
Cisco Unified Provisioning Manager -
Cisco Prime Lan Management Solution -
Cisco Identity Services Engine Software -
NA
CVE-2015-6420
Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Se...
Apache Commons Collections
Apache Commons Collections 4.0
5 Github repositories
NA
CVE-2014-3569
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected ...
Openssl Openssl 1.0.1j
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »