Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco security manager 3.0 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2019-1821
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote malicious user to execute code with root-level privileges on the underlying operating system. This vu...
Cisco Prime Infrastructure
Cisco Evolved Programmable Network Manager
Cisco Network Level Service 3.0\\(0.0.83b\\)
2 EDB exploits
1 Github repository
1 Article
10
CVSSv2
CVE-2015-6435
An unspecified CGI script in Cisco FX-OS prior to 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System (UCS) Manager prior to 2.2(4b), 2.2(5) prior to 2.2(5a), and 3.0 prior to 3.0(2e) allows remote malicious users to execute arbitrary shell commands via a crafted H...
Cisco Firepower Extensible Operating System 1.1.1
Cisco Firepower Extensible Operating System 1.1\\(1.160\\)
Cisco Firepower Extensible Operating System 1.1\\(1.86\\)
Cisco Unified Computing System 3.0\\(1e\\)
Cisco Unified Computing System 3.0\\(1d\\)
Cisco Unified Computing System 2.2\\(3e\\)
Cisco Unified Computing System 2.2\\(3d\\)
Cisco Unified Computing System 2.2\\(1f\\)
Cisco Unified Computing System 2.2\\(1e\\)
Cisco Unified Computing System 2.1\\(1f\\)
Cisco Unified Computing System 2.1\\(1e\\)
Cisco Unified Computing System 1.3\\(1q\\)
Cisco Unified Computing System 1.3\\(1p\\)
Cisco Unified Computing System 1.4\\(4i\\)
Cisco Unified Computing System 1.4\\(4g\\)
Cisco Unified Computing System 1.4\\(4f\\)
Cisco Unified Computing System 2.0\\(4d\\)
Cisco Unified Computing System 2.0\\(4b\\)
Cisco Unified Computing System 2.0\\(2m\\)
Cisco Unified Computing System 2.0\\(1x\\)
Cisco Unified Computing System 1.2 Base
Cisco Unified Computing System 1.1 Base
10
CVSSv2
CVE-2014-6278
GNU Bash up to and including 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote malicious users to execute arbitrary commands via a crafted environment, as demonstrated by vectors involving the ForceCommand feat...
Gnu Bash 1.14.5
Gnu Bash 1.14.6
Gnu Bash 2.03
Gnu Bash 2.04
Gnu Bash 3.2.48
Gnu Bash 4.0
Gnu Bash 1.14.1
Gnu Bash 1.14.2
Gnu Bash 2.01
Gnu Bash 2.01.1
Gnu Bash 3.0
Gnu Bash 3.0.16
Gnu Bash 4.2
Gnu Bash 4.3
Gnu Bash 1.14.0
Gnu Bash 1.14.7
Gnu Bash 2.0
Gnu Bash 2.05
Gnu Bash 4.1
Gnu Bash 1.14.3
Gnu Bash 1.14.4
Gnu Bash 2.02
5 EDB exploits
12 Github repositories
10
CVSSv2
CVE-2010-3036
Multiple buffer overflows in the authentication functionality in the web-server module in Cisco CiscoWorks Common Services prior to 4.0 allow remote malicious users to execute arbitrary code via a session on TCP port (1) 443 or (2) 1741, aka Bug ID CSCti41352.
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 3.3
Cisco Ciscoworks Common Services 3.0.5
Cisco Ciscoworks Common Services 3.0.6
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.1.1
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 2.0.3
Cisco Ciscoworks Lan Management Solution 3.0
Cisco Ciscoworks Lan Management Solution 3.1
Cisco Unified Service Monitor 2.0.1
Cisco Qos Policy Manager 4.0
Cisco Ciscoworks Lan Management Solution 3.2
Cisco Security Manager 3.0.2
Cisco Security Manager 3.2
Cisco Qos Policy Manager 4.0.1
Cisco Qos Policy Manager 4.0.2
Cisco Telepresence Readiness Assessment Manager 1.0
Cisco Unified Operations Manager 2.0.1
Cisco Ciscoworks Lan Management Solution 2.6
10
CVSSv2
CVE-2009-1161
Directory traversal vulnerability in the TFTP service in Cisco CiscoWorks Common Services (CWCS) 3.0.x up to and including 3.2.x on Windows, as used in Cisco Unified Service Monitor, Security Manager, TelePresence Readiness Assessment Manager, Unified Operations Manager, Unified ...
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.1.1
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 3.0.3
Cisco Ciscoworks Common Services 3.0.4
Cisco Ciscoworks Common Services 3.0.5
Cisco Ciscoworks Common Services 3.0.6
Cisco Unified Service Monitor 1.1
Cisco Unified Service Monitor 2.0
Cisco Ciscoworks Lan Management Solution 3.1
Cisco Security Manager 3.0
Cisco Ciscoworks Health And Utilization Monitor 1.1
Cisco Unified Operations Manager 1.0
Cisco Unified Service Monitor 1.0
Cisco Ciscoworks Lan Management Solution 2.6
Cisco Unified Service Monitor 2.1
Cisco Ciscoworks Qos Policy Manager 4.0
Cisco Security Manager 3.2
Cisco Security Manager 3.1
Cisco Unified Operations Manager 1.1
Cisco Unified Operations Manager 2.0
Cisco Ciscoworks Lan Management Solution 3.0
9.3
CVSSv2
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1182 Github repositories
28 Articles
9
CVSSv2
CVE-2019-1823
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote malicious user to execute code with root-level privileges on the underlying operating system. This vu...
Cisco Prime Infrastructure
Cisco Network Level Service 3.0\\(0.0.83b\\)
Cisco Evolved Programmable Network Manager
9
CVSSv2
CVE-2016-1297
The Device Manager GUI in Cisco Application Control Engine (ACE) 4710 A5 before A5(3.1) allows remote authenticated users to bypass intended RBAC restrictions and execute arbitrary CLI commands with admin privileges via an unspecified parameter in a POST request, aka Bug ID CSCul...
Cisco Application Control Engine Software A5\\(2.1\\)
Cisco Application Control Engine Software A5\\(2.0\\)
Cisco Application Control Engine Software A5\\(1.2\\)
Cisco Application Control Engine Software A5\\(1.1\\)
Cisco Application Control Engine Software A5\\(1.0\\)
Cisco Application Control Engine Software A5\\(3.0\\)
Cisco Application Control Engine Software A5\\(2.1e\\)
8.5
CVSSv2
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0
Apache Log4j
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Weblogic Server 12.2.1.4.0
Oracle Primavera Unifier 19.12
Oracle Weblogic Server 14.1.1.0.0
Oracle Primavera Unifier 20.12
Oracle Communications Interactive Session Recorder 6.3
Oracle Communications Interactive Session Recorder 6.4
Oracle Primavera Gateway
Oracle Retail Assortment Planning 16.0.3
Oracle Primavera Unifier 21.12
Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Primavera Gateway 21.12.0
Oracle Retail Fiscal Management 14.2
Oracle Siebel Ui Framework 21.12
Oracle Communications Diameter Signaling Router
Cisco Cloudcenter 4.10.0.16
Fedoraproject Fedora 34
Fedoraproject Fedora 35
34 Github repositories
4 Articles
8.3
CVSSv2
CVE-2018-15380
A vulnerability in the cluster service manager of Cisco HyperFlex Software could allow an unauthenticated, adjacent malicious user to execute commands as the root user. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by conn...
Cisco Hyperflex Hx Data Platform 3.5\\(1a\\)
Cisco Hyperflex Hx Data Platform 3.0\\(1a\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »