Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco security manager vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2008-3820
Cisco Security Manager 3.1 and 3.2 prior to 3.2.2, when Cisco IPS Event Viewer (IEV) is used, exposes TCP ports used by the MySQL daemon and IEV server, which allows remote malicious users to obtain "root access" to IEV via unspecified use of TCP sessions to these ports...
Cisco Security Manager 3.2.1
Cisco Security Manager
Cisco Security Manager 3.1
Cisco Security Manager 3.2
Cisco Security Manager 3.1.1
383
VMScore
CVE-2014-2138
CRLF injection vulnerability in the web framework in Cisco Security Manager 4.2 and previous versions allows remote malicious users to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL, aka Bug ID CSCun82349.
Cisco Security Manager 3.1.1
Cisco Security Manager 3.1
Cisco Security Manager 3.0.2
Cisco Security Manager 3.3.1
Cisco Security Manager 3.3
Cisco Security Manager 3.2.1
Cisco Security Manager 3.2
Cisco Security Manager 4.1
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager 3.2.2
Cisco Security Manager
605
VMScore
CVE-2014-3267
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Security Manager 4.6 and previous versions allows remote malicious users to hijack the authentication of arbitrary users for requests that make unspecified changes, aka Bug ID CSCuo46427.
Cisco Security Manager 4.4
Cisco Security Manager 4.3
Cisco Security Manager 4.5
Cisco Security Manager 4.2
Cisco Security Manager 4.1
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager
383
VMScore
CVE-2014-3266
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Security Manager 4.6 and previous versions allows remote malicious users to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun65189.
Cisco Security Manager
Cisco Security Manager 4.5
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager 4.3
Cisco Security Manager 4.2
Cisco Security Manager 4.4
Cisco Security Manager 4.1
383
VMScore
CVE-2014-2118
Multiple cross-site scripting (XSS) vulnerabilities in dashboard-related HTML documents in Cisco Prime Security Manager (aka PRSM) 9.2(.1-2) and previous versions allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCun50687...
Cisco Prime Security Manager 9.1.2-42
Cisco Prime Security Manager 9.1.2-29
Cisco Prime Security Manager 9.1
Cisco Prime Security Manager 9.2
Cisco Prime Security Manager
Cisco Prime Security Manager 9.2.1-1
Cisco Prime Security Manager 9.1.3-10
Cisco Prime Security Manager 9.1.3-13
Cisco Prime Security Manager 9.1.3-8
Cisco Prime Security Manager 9.0
578
VMScore
CVE-2014-3326
SQL injection vulnerability in the web framework in Cisco Security Manager 4.5 and 4.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCup26957.
Cisco Security Manager 4.6
Cisco Security Manager 4.5
445
VMScore
CVE-2020-27125
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote malicious user to access sensitive information on an affected system. The vulnerability is due to insufficient protection of static credentials in the affected software. An attacker could exploit thi...
Cisco Security Manager
570
VMScore
CVE-2020-27130
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote malicious user to gain access to sensitive information. The vulnerability is due to improper validation of directory traversal character sequences within requests to an affected device. An attacker c...
Cisco Security Manager
892
VMScore
CVE-2020-27131
Multiple vulnerabilities in the Java deserialization function that is used by Cisco Security Manager could allow an unauthenticated, remote malicious user to execute arbitrary commands on an affected device. These vulnerabilities are due to insecure deserialization of user-suppli...
Cisco Security Manager
383
VMScore
CVE-2010-0594
Cross-site scripting (XSS) vulnerability in Cisco Router and Security Device Manager (SDM) allows remote malicious users to inject arbitrary web script or HTML via unknown vectors, aka Bug ID CSCtb38467.
Cisco Router And Security Device Manager
Cisco Router And Security Device Manager 2.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »