Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
user registration tool vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-3177
A vulnerability in the Tool for Auto-Registered Phones Support (TAPS) of Cisco Unified Communications Manager (UCM) and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote malicious user to conduct directory traversal attac...
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 12.5\\(1.10000.22\\)
Cisco Unified Contact Center Express 12.0\\(1\\)
7.5
CVSSv2
CVE-2006-1961
Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express prior to 2.13, Hosting Solution Engine (HSE) and User Registration Tool (URT) prior to 20060419, and all versions of Ethernet Subscriber Solution Engine (ESSE) and CiscoWorks2000 Service Management Solution (SM...
Cisco User Registration Tool
Cisco Wireless Lan Solution Engine 2.11
Cisco Wireless Lan Solution Engine 2.3
Cisco Wireless Lan Solution Engine 2.7
Cisco Wireless Lan Solution Engine 2.8
Cisco Wireless Lan Solution Engine 2.1
Cisco Wireless Lan Solution Engine 2.13
Cisco Wireless Lan Solution Engine 2.5
Cisco Wireless Lan Solution Engine 2.6
Cisco Wireless Lan Solution Engine 2.9
Cisco Wireless Lan Solution Engine 2.10
Cisco Wireless Lan Solution Engine 2.2
Cisco Wireless Lan Solution Engine 2.0
Cisco Wireless Lan Solution Engine 2.12
Cisco Wireless Lan Solution Engine 2.4
Cisco Hosting Solution Engine 1.7.0
Cisco Hosting Solution Engine 1.7.1
Cisco Ethernet Subscriber Solution Engine
Cisco Ciscoworks 2000 Service Management Solution
Cisco Hosting Solution Engine 1.7
Cisco Hosting Solution Engine 1.7.2
Cisco Hosting Solution Engine 1.7.3
5.8
CVSSv2
CVE-2006-1960
Cross-site scripting (XSS) vulnerability in the appliance web user interface in Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express prior to 2.13 allows remote malicious users to inject arbitrary web script or HTML, possibly via the displayMsg parameter to archi...
Cisco Wireless Lan Solution Engine 2.0
Cisco Wireless Lan Solution Engine 2.1
Cisco Wireless Lan Solution Engine 2.10
Cisco Wireless Lan Solution Engine 2.13
Cisco Wireless Lan Solution Engine 2.2
Cisco Wireless Lan Solution Engine 2.5
Cisco Wireless Lan Solution Engine 2.6
Cisco Wireless Lan Solution Engine 2.11
Cisco Wireless Lan Solution Engine 2.12
Cisco Wireless Lan Solution Engine 2.3
Cisco Wireless Lan Solution Engine 2.4
Cisco Wireless Lan Solution Engine 2.7
Cisco Wireless Lan Solution Engine 2.8
Cisco Wireless Lan Solution Engine 2.9
1 EDB exploit
NA
CVE-2023-43654
TorchServe is a tool for serving and scaling PyTorch models in production. TorchServe default configuration lacks proper input validation, enabling third parties to invoke remote HTTP download requests and write files to the disk. This issue could be taken advantage of to comprom...
Pytorch Torchserve
1 Metasploit module
1 Github repository
1 Article
10
CVSSv2
CVE-2002-0012
Vulnerabilities in a large number of SNMP implementations allow remote malicious users to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into m...
Snmp Snmp
10
CVSSv2
CVE-2002-0013
Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote malicious users to cause a denial of service or gain privileges via (1) GetRequest, (2) GetNextRequest, and (3) SetRequest messages, as demonstrated by the PROTOS c06-SNMPv1 test...
Snmp Snmp
1 EDB exploit
7.5
CVSSv2
CVE-2002-0059
The decompression algorithm in zlib 1.1.3 and previous versions, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow local and remote malicious users to execute arbitrary code vi...
Zlib Zlib
5
CVSSv2
CVE-2002-0092
CVS prior to 1.10.8 does not properly initialize a global variable, which allows remote malicious users to cause a denial of service (server crash) via the diff capability.
Cvs Cvs
2.1
CVSSv2
CVE-2002-0080
rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed.
Samba Rsync
Redhat Linux 6.2
Redhat Linux 7.0
Redhat Linux 7.1
Redhat Linux 7.2
5
CVSSv2
CVE-2004-0230
TCP, when using a large Window Size, makes it easier for remote malicious users to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connection...
Oracle Solaris 11
Oracle Solaris 10
Openpgp Openpgp 2.6.2
Mcafee Network Data Loss Prevention 9.2.1
Mcafee Network Data Loss Prevention 9.2.0
Mcafee Network Data Loss Prevention
Mcafee Network Data Loss Prevention 9.2.2
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.6
Netbsd Netbsd 1.6.1
Netbsd Netbsd 1.6.2
Netbsd Netbsd 2.0
Netbsd Netbsd 1.5
Netbsd Netbsd 1.5.1
Xinuos Openserver 5.0.6
Xinuos Openserver 5.0.7
Juniper Junos
Xinuos Unixware 7.1.1
Xinuos Unixware 7.1.3
7 EDB exploits
2 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »