Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ipsec client vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-0392
Stack-based buffer overflow in vpnconf.exe in TheGreenBow IPSec VPN Client 4.51.001, 4.65.003, and possibly other versions, allows user-assisted remote malicious users to execute arbitrary code via a long OpenScriptAfterUp parameter in a policy (.tgb) file, related to "phase...
Thegreenbow Ipsec Vpn Client 4.51.001
Thegreenbow Ipsec Vpn Client 4.65.003
8.1
CVSSv3
CVE-2017-17023
The Sophos UTM VPN endpoint interacts with client software provided by NPC Engineering (www.ncp-e.com). The affected client software, "Sophos IPSec Client" 11.04 is a rebranded version of NCP "Secure Entry Client" 10.11 r32792. A vulnerability in the software ...
Sophos Ipsec Client 11.04
Ncp-e Ncp Secure Entry Client 10.11
NA
CVE-2008-0324
Cisco Systems VPN Client IPSec Driver (CVPNDRVA.sys) 5.0.02.0090 allows local users to cause a denial of service (crash) by calling the 0x80002038 IOCTL with a small size value, which triggers memory corruption.
Cisco Vpn Client 5.0.2.0090
1 EDB exploit
NA
CVE-2012-2499
The IPsec implementation in Cisco AnyConnect Secure Mobility Client 3.0 prior to 3.0.08057 does not verify the certificate name in an X.509 certificate, which allows man-in-the-middle malicious users to spoof servers via a crafted certificate, aka Bug ID CSCtz26985.
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Anyconnect Secure Mobility Client 3.0.0629
Cisco Anyconnect Secure Mobility Client 3.0.07059
NA
CVE-2012-2500
Cisco AnyConnect Secure Mobility Client 3.0 prior to 3.0.08057 does not verify the certificate name in an X.509 certificate during WebLaunch of IPsec, which allows man-in-the-middle malicious users to spoof servers via a crafted certificate, aka Bug ID CSCtz29470.
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Anyconnect Secure Mobility Client 3.0.0629
Cisco Anyconnect Secure Mobility Client 3.0.07059
7.4
CVSSv3
CVE-2022-20742
A vulnerability in an IPsec VPN library of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to read or modify data within an IPsec IKEv2 VPN tunnel. This vulnerability is due t...
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance Software
8.6
CVSSv3
CVE-2018-0472
A vulnerability in the IPsec driver code of multiple Cisco IOS XE Software platforms and the Cisco ASA 5500-X Series Adaptive Security Appliance (ASA) could allow an unauthenticated, remote malicious user to cause the device to reload. The vulnerability is due to improper process...
Cisco Ios Xe 16.8.1
Cisco Ios Xe 15.5(3)s5.36
NA
CVE-2009-2918
The tgbvpn.sys driver in TheGreenBow IPSec VPN Client 4.61.003 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a crafted request to the 0x80000034 IOCTL, probably involving an input or output buffer size of 0.
Thegreenbow Thegreenbow Vpn Client 4.61.003
1 EDB exploit
NA
CVE-2007-3157
IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remote malicious users to cause a denial of service (infinite loop and system hang) via an invalid packet with certain bytes in an option header, possibly related to the IPv6 support fo...
Safenet Softremote Vpn Client 1.4
Safenet Safenet Highassurance Remote 1.4.0 Build 12
1 EDB exploit
NA
CVE-2003-0258
Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 3.5.x up to and including 4.0.REL, when enabling IPSec over TCP for a port on the concentrator, allow remote malicious users to reach the private network without authentication.
Cisco Vpn 3015 Concentrator
Cisco Vpn 3030 Concentator
Cisco Vpn 3060 Concentrator
Cisco Vpn 3080 Concentrator
Cisco Vpn 3000 Concentrator Series Software 3.5(rel)
Cisco Vpn 3000 Concentrator Series Software 3.5.1
Cisco Vpn 3000 Concentrator Series Software 3.5.2
Cisco Vpn 3000 Concentrator Series Software 3.5.3
Cisco Vpn 3000 Concentrator Series Software 3.5.4
Cisco Vpn 3000 Concentrator Series Software 3.5.5
Cisco Vpn 3000 Concentrator Series Software 3.6
Cisco Vpn 3000 Concentrator Series Software 3.6.1
Cisco Vpn 3000 Concentrator Series Software 3.6.3
Cisco Vpn 3000 Concentrator Series Software 3.6.5
Cisco Vpn 3000 Concentrator Series Software 3.6.7
Cisco Vpn 3000 Concentrator Series Software 3.6.7.a
Cisco Vpn 3000 Concentrator Series Software 3.6.7.b
Cisco Vpn 3000 Concentrator Series Software 3.6.7.c
Cisco Vpn 3000 Concentrator Series Software 3.6.7.d
Cisco Vpn 3000 Concentrator Series Software 3.6.7d
Cisco Vpn 3000 Concentrator Series Software 4.0
Cisco Vpn 3005 Concentrator Software 4.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »