Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
prime infrastructure vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2015-8139
ntpq in NTP prior to 4.2.8p7 allows remote malicious users to obtain origin timestamps and then impersonate peers via unspecified vectors.
Ntp Ntp
4.8
CVSSv3
CVE-2015-8140
The ntpq protocol in NTP prior to 4.2.8p7 allows remote malicious users to conduct replay attacks by sniffing the network.
Ntp Ntp
7.5
CVSSv3
CVE-2015-7848
An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memory copy operation when processing a specially crafted private mode packet. The crafted packet needs to have the correct message authentication code and a valid timestamp. When processed by the NTP dae...
Ntp Ntp-dev 4.3.70
7.8
CVSSv3
CVE-2016-5195
Race condition in mm/gup.c in the Linux kernel 2.x up to and including 4.x prior to 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka ...
Canonical Ubuntu Linux 16.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux Tus 6.5
Redhat Enterprise Linux Eus 6.7
Redhat Enterprise Linux Long Life 5.6
Redhat Enterprise Linux Aus 6.4
Redhat Enterprise Linux 5
Redhat Enterprise Linux Long Life 5.9
Redhat Enterprise Linux Aus 6.2
Redhat Enterprise Linux Eus 7.1
Redhat Enterprise Linux Eus 6.6
Redhat Enterprise Linux Aus 6.5
Debian Debian Linux 8.0
Debian Debian Linux 7.0
5 EDB exploits
177 Github repositories
6 Articles
8.8
CVSSv3
CVE-2016-6443
A vulnerability in the Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL database interface could allow an authenticated, remote malicious user to impact system confidentiality by executing a subset of arbitrary SQL queries that can cause product instability...
Cisco Evolved Programmable Network Manager 2.0
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 3.0
Cisco Prime Infrastructure 3.1.1
Cisco Prime Infrastructure 1.2
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.3
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 2.0
Cisco Prime Infrastructure 2.1.0
Cisco Prime Infrastructure 2.2
Cisco Evolved Programmable Network Manager 1.2
Cisco Prime Infrastructure 1.4
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 3.1
4.3
CVSSv3
CVE-2016-1474
Cisco Prime Infrastructure 2.2(2) does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)" issue, ...
Cisco Prime Infrastructure 2.2\\(2\\)
7.5
CVSSv3
CVE-2016-2180
The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL up to and including 1.0.2h allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a cr...
Openssl Openssl 1.0.1m
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.2e
Openssl Openssl 1.0.1r
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.2g
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.2h
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1t
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.1p
Openssl Openssl 1.0.1k
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1n
Openssl Openssl 1.0.1q
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1l
8.8
CVSSv3
CVE-2016-1442
The administrative web interface in Cisco Prime Infrastructure (PI) prior to 3.1.1 allows remote authenticated users to execute arbitrary commands via crafted field values, aka Bug ID CSCuy96280.
Cisco Prime Infrastructure 3.1
Cisco Prime Infrastructure 3.0
9.8
CVSSv3
CVE-2016-1289
The API in Cisco Prime Infrastructure 1.2 up to and including 3.0 and Evolved Programmable Network Manager (EPNM) 1.2 allows remote malicious users to execute arbitrary code or obtain sensitive management information via a crafted HTTP request, as demonstrated by discovering mana...
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 2.1.0
Cisco Prime Infrastructure 1.4
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 2.0
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.3
Cisco Prime Infrastructure 1.2
Cisco Evolved Programmable Network Manager 1.2.0
8.8
CVSSv3
CVE-2016-1408
Cisco Prime Infrastructure 1.2 up to and including 3.1 and Evolved Programmable Network Manager (EPNM) 1.2 and 2.0 allow remote authenticated users to execute arbitrary commands or upload files via a crafted HTTP request, aka Bug ID CSCuz01488.
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 1.4
Cisco Prime Infrastructure 2.0
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.3
Cisco Prime Infrastructure 3.1
Cisco Prime Infrastructure 3.0
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.2
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 2.1.0
Cisco Evolved Programmable Network Manager 1.2.300
Cisco Evolved Programmable Network Manager 1.2.200
Cisco Evolved Programmable Network Manager 1.2.1.3
Cisco Evolved Programmable Network Manager 1.2.0
Cisco Evolved Programmable Network Manager 1.2.500
Cisco Evolved Programmable Network Manager 1.2.400
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »