Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ssl vpn vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-3407
The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.3(.2) and previous versions does not properly allocate memory blocks during HTTP packet handling, which allows remote malicious users to cause a denial of service (memory consumption) via crafted pac...
Cisco Adaptive Security Appliance Software
3.5
CVSSv2
CVE-2017-14186
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.7, 5.4 and below versions under SSL VPN web portal allows a remote user to inject arbitrary web script or HTML in the context of the victim's browser via the login redir parameter. An...
Fortinet Fortios
7.8
CVSSv2
CVE-2014-2112
The SSL VPN (aka WebVPN) feature in Cisco IOS 15.1 up to and including 15.4 allows remote malicious users to cause a denial of service (memory consumption) via crafted HTTP requests, aka Bug ID CSCuf51357.
Cisco Ios 15.4
Cisco Ios 15.3
Cisco Ios 15.2
Cisco Ios 15.1
4.9
CVSSv2
CVE-2013-1199
Race condition in the CIFS implementation in the rewriter module in the Clientless SSL VPN component on Cisco Adaptive Security Appliances (ASA) devices allows remote authenticated users to cause a denial of service (device reload) by accessing resources within multiple sessions,...
Cisco Adaptive Security Appliance Clientless Ssl Vpn -
Cisco Adaptive Security Appliance Software -
Cisco Adaptive Security Appliance
7.5
CVSSv2
CVE-2012-1777
SQL injection vulnerability in my.activation.php3 in F5 FirePass 6.0.0 up to and including 6.1.0 and 7.0.0 allows remote malicious users to execute arbitrary SQL commands via the state parameter.
F5 Firepass 7.0.0
F5 Firepass 6.0
F5 Firepass 6.1.0
9.3
CVSSv2
CVE-2012-0358
Buffer overflow in the Cisco Port Forwarder ActiveX control in cscopf.ocx, as distributed through the Clientless VPN feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 up to and including 7.2 prior to 7.2(5.6), 8.0 prior to 8.0(5.26), 8.1 pr...
Cisco Adaptive Security Appliance Software 7.0
Cisco Adaptive Security Appliance Software 7.0\\(0\\)
Cisco Adaptive Security Appliance Software 7.0\\(1\\)
Cisco Adaptive Security Appliance Software 7.0\\(2\\)
Cisco Adaptive Security Appliance Software 7.0\\(4\\)
Cisco Adaptive Security Appliance Software 7.0\\(5\\)
Cisco Adaptive Security Appliance Software 7.0\\(5.2\\)
Cisco Adaptive Security Appliance Software 7.0\\(6\\)
Cisco Adaptive Security Appliance Software 7.0\\(6.7\\)
Cisco Adaptive Security Appliance Software 7.0\\(7\\)
Cisco Adaptive Security Appliance Software 7.0\\(8\\)
Cisco Adaptive Security Appliance Software 7.0.1
Cisco Adaptive Security Appliance Software 7.0.1.4
Cisco Adaptive Security Appliance Software 7.0.2
Cisco Adaptive Security Appliance Software 7.0.4
Cisco Adaptive Security Appliance Software 7.0.4.3
Cisco Adaptive Security Appliance Software 7.0.5
Cisco Adaptive Security Appliance Software 7.0.6
Cisco Adaptive Security Appliance Software 7.0.7
Cisco Adaptive Security Appliance Software 7.0.8
Cisco Adaptive Security Appliance Software 7.1
Cisco Adaptive Security Appliance Software 7.1\\(2\\)
5
CVSSv2
CVE-2019-1715
A vulnerability in the Deterministic Random Bit Generator (DRBG), also known as Pseudorandom Number Generator (PRNG), used in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user t...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance Device Manager
7.6
CVSSv2
CVE-2011-2039
The helper application in Cisco AnyConnect Secure Mobility Client (formerly AnyConnect VPN Client) prior to 2.3.185 on Windows, and on Windows Mobile, downloads a client executable file (vpndownloader.exe) without verifying its authenticity, which allows remote malicious users to...
Cisco Anyconnect Secure Mobility Client 2.0
Cisco Anyconnect Secure Mobility Client 2.2.133
Cisco Anyconnect Secure Mobility Client 2.2.128
Cisco Anyconnect Secure Mobility Client 2.2.140
Cisco Anyconnect Secure Mobility Client 2.2.136
Cisco Anyconnect Secure Mobility Client 2.1
Cisco Anyconnect Secure Mobility Client 2.2
Cisco Anyconnect Secure Mobility Client
1 EDB exploit
4.3
CVSSv2
CVE-2018-0251
A vulnerability in the Web Server Authentication Required screen of the Clientless Secure Sockets Layer (SSL) VPN portal of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack agains...
Cisco Adaptive Security Appliance Software 9.8\\(2.15\\)
Cisco Adaptive Security Appliance Software 9.9\\(1\\)
NA
CVE-2024-3388
A vulnerability in the GlobalProtect Gateway in Palo Alto Networks PAN-OS software enables an authenticated malicious user to impersonate another user and send network packets to internal assets. However, this vulnerability does not allow the malicious user to receive response pa...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »