Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

user registration tool vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2020-3177
A vulnerability in the Tool for Auto-Registered Phones Support (TAPS) of Cisco Unified Communications Manager (UCM) and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote malicious user to conduct directory traversal attac...
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)Cisco Unified Communications Manager 11.5\\(1.10000.6\\)Cisco Unified Communications Manager 12.0\\(1.10000.10\\)Cisco Unified Communications Manager 12.5\\(1.10000.22\\)Cisco Unified Contact Center Express 12.0\\(1\\)
7.5
CVSSv2
CVE-2006-1961
Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express prior to 2.13, Hosting Solution Engine (HSE) and User Registration Tool (URT) prior to 20060419, and all versions of Ethernet Subscriber Solution Engine (ESSE) and CiscoWorks2000 Service Management Solution (SM...
Cisco User Registration ToolCisco Wireless Lan Solution Engine 2.11Cisco Wireless Lan Solution Engine 2.3Cisco Wireless Lan Solution Engine 2.7Cisco Wireless Lan Solution Engine 2.8Cisco Wireless Lan Solution Engine 2.1Cisco Wireless Lan Solution Engine 2.13Cisco Wireless Lan Solution Engine 2.5Cisco Wireless Lan Solution Engine 2.6Cisco Wireless Lan Solution Engine 2.9Cisco Wireless Lan Solution Engine 2.10Cisco Wireless Lan Solution Engine 2.2Cisco Wireless Lan Solution Engine 2.0Cisco Wireless Lan Solution Engine 2.12Cisco Wireless Lan Solution Engine 2.4Cisco Hosting Solution Engine 1.7.0Cisco Hosting Solution Engine 1.7.1Cisco Ethernet Subscriber Solution EngineCisco Ciscoworks 2000 Service Management SolutionCisco Hosting Solution Engine 1.7Cisco Hosting Solution Engine 1.7.2Cisco Hosting Solution Engine 1.7.3
5.8
CVSSv2
CVE-2006-1960
Cross-site scripting (XSS) vulnerability in the appliance web user interface in Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express prior to 2.13 allows remote malicious users to inject arbitrary web script or HTML, possibly via the displayMsg parameter to archi...
Cisco Wireless Lan Solution Engine 2.0Cisco Wireless Lan Solution Engine 2.1Cisco Wireless Lan Solution Engine 2.10Cisco Wireless Lan Solution Engine 2.13Cisco Wireless Lan Solution Engine 2.2Cisco Wireless Lan Solution Engine 2.5Cisco Wireless Lan Solution Engine 2.6Cisco Wireless Lan Solution Engine 2.11Cisco Wireless Lan Solution Engine 2.12Cisco Wireless Lan Solution Engine 2.3Cisco Wireless Lan Solution Engine 2.4Cisco Wireless Lan Solution Engine 2.7Cisco Wireless Lan Solution Engine 2.8Cisco Wireless Lan Solution Engine 2.9
NA
CVE-2023-43654
TorchServe is a tool for serving and scaling PyTorch models in production. TorchServe default configuration lacks proper input validation, enabling third parties to invoke remote HTTP download requests and write files to the disk. This issue could be taken advantage of to comprom...
Pytorch Torchserve
10
CVSSv2
CVE-2002-0012
Vulnerabilities in a large number of SNMP implementations allow remote malicious users to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into m...
Snmp Snmp
10
CVSSv2
CVE-2002-0013
Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote malicious users to cause a denial of service or gain privileges via (1) GetRequest, (2) GetNextRequest, and (3) SetRequest messages, as demonstrated by the PROTOS c06-SNMPv1 test...
Snmp Snmp
7.5
CVSSv2
CVE-2002-0059
The decompression algorithm in zlib 1.1.3 and previous versions, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow local and remote malicious users to execute arbitrary code vi...
Zlib Zlib
5
CVSSv2
CVE-2002-0092
CVS prior to 1.10.8 does not properly initialize a global variable, which allows remote malicious users to cause a denial of service (server crash) via the diff capability.
Cvs Cvs
2.1
CVSSv2
CVE-2002-0080
rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed.
Samba RsyncRedhat Linux 6.2Redhat Linux 7.0Redhat Linux 7.1Redhat Linux 7.2
5
CVSSv2
CVE-2004-0230
TCP, when using a large Window Size, makes it easier for remote malicious users to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connection...
Oracle Solaris 11Oracle Solaris 10Openpgp Openpgp 2.6.2Mcafee Network Data Loss Prevention 9.2.1Mcafee Network Data Loss Prevention 9.2.0Mcafee Network Data Loss PreventionMcafee Network Data Loss Prevention 9.2.2Netbsd Netbsd 1.5.2Netbsd Netbsd 1.5.3Netbsd Netbsd 1.6Netbsd Netbsd 1.6.1Netbsd Netbsd 1.6.2Netbsd Netbsd 2.0Netbsd Netbsd 1.5Netbsd Netbsd 1.5.1Xinuos Openserver 5.0.6Xinuos Openserver 5.0.7Juniper JunosXinuos Unixware 7.1.1Xinuos Unixware 7.1.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook