Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
appliance vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-34447
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains OS Command Injection vulnerability. An authenticated remote attacker with administrative privileges could potentially exploit the issue and execute commands on the system as the root user.
Dell Powerpath Management Appliance 3.1
Dell Powerpath Management Appliance 3.2
Dell Powerpath Management Appliance 3.3
Dell Powerpath Management Appliance 3.0
NA
CVE-2022-34448
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vulnerability. An unauthenticated non-privileged user could potentially exploit the issue and perform any privileged state-changing actions.
Dell Powerpath Management Appliance 3.1
Dell Powerpath Management Appliance 3.2
Dell Powerpath Management Appliance 3.3
Dell Powerpath Management Appliance 3.0
NA
CVE-2022-34451
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Stored Cross-site Scripting Vulnerability. An authenticated admin user could potentially exploit this vulnerability, to hijack user sessions or trick a victim application user into unknowingly...
Dell Powerpath Management Appliance 3.1
Dell Powerpath Management Appliance 3.2
Dell Powerpath Management Appliance 3.3
Dell Powerpath Management Appliance 3.0
641
VMScore
CVE-2021-43587
Dell PowerPath Management Appliance, versions 3.2, 3.1, 3.0 P01, 3.0, and 2.6, use hard-coded cryptographic key. A local high-privileged malicious user may potentially exploit this vulnerability to gain access to secrets and elevate to gain higher privileges.
Dell Powerpath Management Appliance 2.6
Dell Powerpath Management Appliance 3.0
Dell Powerpath Management Appliance 3.1
Dell Powerpath Management Appliance 3.2
445
VMScore
CVE-2016-6358
A vulnerability in local FTP to the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to cause a partial denial of service (DoS) condition when the FTP application unexpectedly quits. More Information: CSCux68539. Known Affected Releases: ...
Cisco Email Security Appliance 9.9.6-026
Cisco Email Security Appliance 9.7.2-054
Cisco Email Security Appliance 9.7.1-066
Cisco Email Security Appliance 9.7.2-046
Cisco Email Security Appliance 9.9 Base
Cisco Email Security Appliance 9.7.2-047
445
VMScore
CVE-2016-1404
Cisco UCS Invicta 4.3, 4.5, and 5.0.1 on Invicta appliances and Invicta Scaling System uses the same hardcoded GnuPG encryption key across different customers' installations, which allows remote malicious users to defeat cryptographic protection mechanisms by sniffing networ...
Cisco Ucs Invicta C3124sa Appliance 4.5 Base
Cisco Ucs Invicta C3124sa Appliance 4.3 Base
Cisco Ucs Invicta C3124sa Appliance 4.3.1
Cisco Ucs Invicta C3124sa Appliance 4.5.0
Cisco Ucs Invicta C3124sa Appliance 5.0.1
Cisco Ucs Invicta C3124sa Appliance 5.0 Base
578
VMScore
CVE-2009-4455
The default configuration of Cisco ASA 5500 Series Adaptive Security Appliance (Cisco ASA) 7.0, 7.1, 7.2, 8.0, 8.1, and 8.2 allows portal traffic to access arbitrary backend servers, which might allow remote authenticated users to bypass intended access restrictions and access un...
Cisco Adaptive Security Appliance 5500 7.0
Cisco Adaptive Security Appliance 5500 7.1
Cisco Adaptive Security Appliance 5500 7.2
Cisco Adaptive Security Appliance 5500 8.2
Cisco Adaptive Security Appliance 5500 8.0
Cisco Adaptive Security Appliance 5500 8.1
445
VMScore
CVE-2017-6750
A vulnerability in AsyncOS for the Cisco Web Security Appliance (WSA) could allow an unauthenticated, local malicious user to log in to the device with the privileges of a limited user or an unauthenticated, remote malicious user to authenticate to certain areas of the web GUI, a...
Cisco Web Security Appliance 10.1.1-235
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.5.1
Cisco Web Security Virtual Appliance 10.5 Base
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.1.1
Cisco Web Security Virtual Appliance 10.1 Base
312
VMScore
CVE-2017-6749
A vulnerability in the web-based management interface of Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. Affect...
Cisco Web Security Virtual Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.5.1
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.5.1-270
Cisco Web Security Virtual Appliance 10.1 Base
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.1-235
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Virtual Appliance 10.5 Base
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.1.1
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.0.0-233
694
VMScore
CVE-2008-2056
Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 8.0.x prior to 8.0(3)9 and 8.1.x prior to 8.1(1)1 allows remote malicious users to cause a denial of service (device reload) via a crafted Transport Layer Security (TLS) packet to the device interface.
Cisco Pix Security Appliance 8.1
Cisco Adaptive Security Appliance 8.1
Cisco Pix Security Appliance 8.0
Cisco Adaptive Security Appliance Software 8.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »