Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco security manager 3.1.1 vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2008-3820
Cisco Security Manager 3.1 and 3.2 prior to 3.2.2, when Cisco IPS Event Viewer (IEV) is used, exposes TCP ports used by the MySQL daemon and IEV server, which allows remote malicious users to obtain "root access" to IEV via unspecified use of TCP sessions to these ports...
Cisco Security Manager 3.2.1
Cisco Security Manager
Cisco Security Manager 3.1
Cisco Security Manager 3.2
Cisco Security Manager 3.1.1
383
VMScore
CVE-2014-2138
CRLF injection vulnerability in the web framework in Cisco Security Manager 4.2 and previous versions allows remote malicious users to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL, aka Bug ID CSCun82349.
Cisco Security Manager 3.1.1
Cisco Security Manager 3.1
Cisco Security Manager 3.0.2
Cisco Security Manager 3.3.1
Cisco Security Manager 3.3
Cisco Security Manager 3.2.1
Cisco Security Manager 3.2
Cisco Security Manager 4.1
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager 3.2.2
Cisco Security Manager
890
VMScore
CVE-2010-3036
Multiple buffer overflows in the authentication functionality in the web-server module in Cisco CiscoWorks Common Services prior to 4.0 allow remote malicious users to execute arbitrary code via a session on TCP port (1) 443 or (2) 1741, aka Bug ID CSCti41352.
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 3.3
Cisco Ciscoworks Common Services 3.0.5
Cisco Ciscoworks Common Services 3.0.6
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.1.1
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 2.0.3
Cisco Ciscoworks Lan Management Solution 3.0
Cisco Ciscoworks Lan Management Solution 3.1
Cisco Unified Service Monitor 2.0.1
Cisco Qos Policy Manager 4.0
Cisco Ciscoworks Lan Management Solution 3.2
Cisco Security Manager 3.0.2
Cisco Security Manager 3.2
Cisco Qos Policy Manager 4.0.1
Cisco Qos Policy Manager 4.0.2
Cisco Telepresence Readiness Assessment Manager 1.0
Cisco Unified Operations Manager 2.0.1
Cisco Ciscoworks Lan Management Solution 2.6
383
VMScore
CVE-2017-6699
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM) could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based ...
Cisco Prime Infrastructure 3.1
Cisco Evolved Programmable Network Manager 2.0\\(4.0.45b\\)
Cisco Evolved Programmable Network Manager 2.0\\(4.0.45d\\)
Cisco Prime Infrastructure 3.1\\(0.128\\)
Cisco Prime Infrastructure 3.1.1
Cisco Evolved Programmable Network Manager 2.0.0
801
VMScore
CVE-2011-3310
The Home Page component in Cisco CiscoWorks Common Services prior to 4.1 on Windows, as used in CiscoWorks LAN Management Solution, Cisco Security Manager, Cisco Unified Service Monitor, Cisco Unified Operations Manager, CiscoWorks QoS Policy Manager, and CiscoWorks Voice Manager...
Cisco Ciscoworks Common Services
Cisco Ciscoworks Common Services 3.3
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.0.6
Cisco Ciscoworks Common Services 3.0.5
Cisco Ciscoworks Common Services 2.2
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 3.1.1
Microsoft Windows
690
VMScore
CVE-2011-0966
Directory traversal vulnerability in cwhp/auditLog.do in the Homepage Auditing component in Cisco CiscoWorks Common Services 3.3 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter, aka Bug ID CSCto35577.
Cisco Ciscoworks Common Services 2.2
Cisco Ciscoworks Common Services
Cisco Ciscoworks Common Services 3.0.6
Cisco Ciscoworks Common Services 3.0.4
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 1.0
Cisco Ciscoworks Common Services 3.1.1
Cisco Ciscoworks Common Services 3.0
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.0.3
Cisco Ciscoworks Common Services 3.0.5
2 EDB exploits
440
VMScore
CVE-2011-0961
Cross-site scripting (XSS) vulnerability in cwhp/device.center.do in the Help servlet in Cisco CiscoWorks Common Services 3.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the device parameter, aka Bug ID CSCto12704.
Cisco Ciscoworks Common Services 2.2
Cisco Ciscoworks Common Services
Cisco Ciscoworks Common Services 3.0.6
Cisco Ciscoworks Common Services 3.0.4
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 1.0
Cisco Ciscoworks Common Services 3.1.1
Cisco Ciscoworks Common Services 3.0
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.0.3
Cisco Ciscoworks Common Services 3.0.5
2 EDB exploits
890
VMScore
CVE-2009-1161
Directory traversal vulnerability in the TFTP service in Cisco CiscoWorks Common Services (CWCS) 3.0.x up to and including 3.2.x on Windows, as used in Cisco Unified Service Monitor, Security Manager, TelePresence Readiness Assessment Manager, Unified Operations Manager, Unified ...
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.1.1
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 3.0.3
Cisco Ciscoworks Common Services 3.0.4
Cisco Ciscoworks Common Services 3.0.5
Cisco Ciscoworks Common Services 3.0.6
Cisco Unified Service Monitor 1.1
Cisco Unified Service Monitor 2.0
Cisco Ciscoworks Lan Management Solution 3.1
Cisco Security Manager 3.0
Cisco Ciscoworks Health And Utilization Monitor 1.1
Cisco Unified Operations Manager 1.0
Cisco Unified Service Monitor 1.0
Cisco Ciscoworks Lan Management Solution 2.6
Cisco Unified Service Monitor 2.1
Cisco Ciscoworks Qos Policy Manager 4.0
Cisco Security Manager 3.2
Cisco Security Manager 3.1
Cisco Unified Operations Manager 1.1
Cisco Unified Operations Manager 2.0
Cisco Ciscoworks Lan Management Solution 3.0
534
VMScore
CVE-2017-6662
A vulnerability in the web-based user interface of Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker read and write access to information stored in the affected system as well as perform remote code execu...
Cisco Evolved Programmable Network Manager 1.2.0
Cisco Evolved Programmable Network Manager 1.2.300
Cisco Evolved Programmable Network Manager 2.0.0
Cisco Prime Infrastructure 3.1
Cisco Evolved Programmable Network Manager 1.2.200
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 3.1\\(0.128\\)
Cisco Prime Infrastructure 3.2\\(0.0\\)
Cisco Prime Infrastructure 3.1\\(4.0\\)
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 1.2
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 3.1.1
Cisco Prime Infrastructure 2.2\\(3\\)
Cisco Prime Infrastructure 3.0
Cisco Evolved Programmable Network Manager 2.0\\(4.0.45d\\)
Cisco Evolved Programmable Network Manager 1.2.500
384
VMScore
CVE-2015-1788
The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL prior to 0.9.8s, 1.0.0 prior to 1.0.0e, 1.0.1 prior to 1.0.1n, and 1.0.2 prior to 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows re...
Openssl Openssl
Openssl Openssl 1.0.1m
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.0n
Openssl Openssl 1.0.1
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.0
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.0m
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0j
Openssl Openssl 1.0.0p
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.0o
Openssl Openssl 1.0.1d
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »