Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified operations manager 2.0.3 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0a
Openssl Openssl 1.1.0b
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
7.5
CVSSv3
CVE-2017-3730
In OpenSSL 1.1.0 prior to 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0a
Oracle Agile Engineering Data Management 6.2.0
Oracle Jd Edwards World Security A9.2
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Application Session Controller 3.7.1
Oracle Jd Edwards World Security A9.4
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Agile Engineering Data Management 6.1.3
Oracle Jd Edwards World Security A9.1
Oracle Jd Edwards World Security A9.3
Oracle Communications Eagle Lnp Application Processor 10.0
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Communications Application Session Controller 3.8.0
1 EDB exploit
1 Github repository
1 Article
NA
CVE-2011-2738
Multiple unspecified vulnerabilities in Cisco Unified Service Monitor prior to 8.6, as used in Unified Operations Manager prior to 8.6 and CiscoWorks LAN Management Solution 3.x and 4.x prior to 4.1; and multiple EMC Ionix products including Application Connectivity Monitor (Ioni...
Cisco Unified Service Monitor 8.0
Cisco Unified Service Monitor
Cisco Unified Service Monitor 2.0.1
Cisco Unified Service Monitor 2.2
Cisco Unified Service Monitor 2.3
Cisco Unified Service Monitor 2.0
Cisco Unified Service Monitor 2.1
Cisco Unified Service Monitor 1.1
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 2.0.3
Cisco Ciscoworks Lan Management Solution 3.0
Cisco Ciscoworks Lan Management Solution 3.2
Cisco Unified Operations Manager 1.1
Cisco Unified Operations Manager 2.3
Cisco Unified Operations Manager 8.0
Cisco Ciscoworks Lan Management Solution 4.0
Cisco Ciscoworks Lan Management Solution 4.0.1
Cisco Unified Operations Manager 2.0
Cisco Unified Operations Manager 2.0.1
Cisco Unified Operations Manager
Cisco Unified Operations Manager 1.0
Cisco Unified Operations Manager 2.1
NA
CVE-2011-0959
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Operations Manager (CUOM) prior to 8.6 allow remote malicious users to inject arbitrary web script or HTML via (1) the extn parameter to iptm/advancedfind.do, (2) the deviceInstanceName parameter to iptm/ddv.do,...
Cisco Unified Operations Manager 2.2
Cisco Unified Operations Manager 2.0
Cisco Unified Operations Manager 2.0.1
Cisco Unified Operations Manager
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 1.1
Cisco Unified Operations Manager 2.3
Cisco Unified Operations Manager 2.1
Cisco Unified Operations Manager 8.0
Cisco Unified Operations Manager 2.0.3
6 EDB exploits
NA
CVE-2011-0960
Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager (CUOM) prior to 8.6 allow remote malicious users to execute arbitrary SQL commands via (1) the CCMs parameter to iptm/PRTestCreation.do or (2) the ccm parameter to iptm/TelePresenceReportAction.do, aka Bug...
Cisco Unified Operations Manager 2.2
Cisco Unified Operations Manager 2.0
Cisco Unified Operations Manager 2.0.1
Cisco Unified Operations Manager
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 1.1
Cisco Unified Operations Manager 2.3
Cisco Unified Operations Manager 2.1
Cisco Unified Operations Manager 8.0
Cisco Unified Operations Manager 2.0.3
1 EDB exploit
NA
CVE-2011-0962
Cross-site scripting (XSS) vulnerability in CSCOnm/servlet/com.cisco.nm.help.ServerHelpEngine in the Common Services Device Center in Cisco Unified Operations Manager (CUOM) prior to 8.6 allows remote malicious users to inject arbitrary web script or HTML via the tag parameter, a...
Cisco Unified Operations Manager 2.2
Cisco Unified Operations Manager 2.0
Cisco Unified Operations Manager 2.0.1
Cisco Unified Operations Manager
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 1.1
Cisco Unified Operations Manager 2.3
Cisco Unified Operations Manager 2.1
Cisco Unified Operations Manager 8.0
Cisco Unified Operations Manager 2.0.3
2 EDB exploits
NA
CVE-2010-3036
Multiple buffer overflows in the authentication functionality in the web-server module in Cisco CiscoWorks Common Services prior to 4.0 allow remote malicious users to execute arbitrary code via a session on TCP port (1) 443 or (2) 1741, aka Bug ID CSCti41352.
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 3.3
Cisco Ciscoworks Common Services 3.0.5
Cisco Ciscoworks Common Services 3.0.6
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.1.1
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 2.0.3
Cisco Ciscoworks Lan Management Solution 3.0
Cisco Ciscoworks Lan Management Solution 3.1
Cisco Unified Service Monitor 2.0.1
Cisco Qos Policy Manager 4.0
Cisco Ciscoworks Lan Management Solution 3.2
Cisco Security Manager 3.0.2
Cisco Security Manager 3.2
Cisco Qos Policy Manager 4.0.1
Cisco Qos Policy Manager 4.0.2
Cisco Telepresence Readiness Assessment Manager 1.0
Cisco Unified Operations Manager 2.0.1
Cisco Ciscoworks Lan Management Solution 2.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954
CVE-2024-36933
CVE-2024-24919
CVE-2024-36923
CVE-2024-2961
CVE-2024-36925
bypass
encryption
command injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started