Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gui vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2020-3410
A vulnerability in the Common Access Card (CAC) authentication feature of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote malicious user to bypass authentication and access the FMC system. The attacker must have a valid CAC to initiate the ...
Cisco Firepower Management Center 6.6.0.1
Cisco Firepower Management Center 6.6.0
NA
CVE-2004-1099
Cisco Secure Access Control Server for Windows (ACS Windows) and Cisco Secure Access Control Server Solution Engine (ACS Solution Engine) 3.3.1, when the EAP-TLS protocol is enabled, does not properly handle expired or untrusted certificates, which allows remote malicious users t...
Cisco Secure Access Control Server 3.3\\(1\\)
Cisco Secure Access Control Server 3.3.1
Cisco Secure Acs Solution Engine
9.8
CVSSv3
CVE-2018-15441
A vulnerability in the web framework code of Cisco Prime License Manager (PLM) could allow an unauthenticated, remote malicious user to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation of user-supplied input in SQL queries. An attacker could ...
Cisco Prime License Manager
Cisco Prime License Manager 11.5\\(1\\)
NA
CVE-2004-1459
Cisco Secure Access Control Server (ACS) 3.2, when configured as a Light Extensible Authentication Protocol (LEAP) RADIUS proxy, allows remote malicious users to cause a denial of service (device crash) via certain LEAP authentication requests.
8.8
CVSSv3
CVE-2017-12226
A vulnerability in the web-based Wireless Controller GUI of Cisco IOS XE Software for Cisco 5760 Wireless LAN Controllers, Cisco Catalyst 4500E Supervisor Engine 8-E (Wireless) Switches, and Cisco New Generation Wireless Controllers (NGWC) 3850 could allow an authenticated, remot...
Cisco Ios Xe 3.7.1e
Cisco Ios Xe 3.7.2e
Cisco Ios Xe 3.7.4e
Cisco Ios Xe 3.7.3e
Cisco Ios Xe 3.7.5e
Cisco Ios Xe 3.7.0e
7.2
CVSSv3
CVE-2023-39171
SENEC Storage Box V1,V2 and V3 accidentially expose a management UI accessible with publicly known admin credentials.
Enbw Senec Storage Box Firmware
8.2
CVSSv3
CVE-2023-20223
A vulnerability in Cisco DNA Center could allow an unauthenticated, remote malicious user to read and modify data in a repository that belongs to an internal service on an affected device. This vulnerability is due to insufficient access control enforcement on API requests. An at...
Cisco Dna Center
NA
CVE-2010-3037
goform/websXMLAdminRequestCgi.cgi in Cisco Unified Videoconferencing (UVC) System 5110 and 5115, and possibly Unified Videoconferencing System 3545 and 5230, Unified Videoconferencing 3527 Primary Rate Interface (PRI) Gateway, Unified Videoconferencing 3522 Basic Rate Interfaces ...
Cisco Unified Videoconferencing System 5115 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 5110 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 5115
Cisco Unified Videoconferencing System 5110
Cisco Unified Videoconferencing System 3527 Primary Rate Interface Gateway Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3522 Basic Rate Interface Gateway Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3515 Multipoint Control Unit Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3545 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 5230 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3522 Basic Rate Interface Gateway
Cisco Unified Videoconferencing System 3515 Multipoint Control Unit
Cisco Unified Videoconferencing System 3545
Cisco Unified Videoconferencing System 5230
Cisco Unified Videoconferencing System 3527 Primary Rate Interface Gateway
5.3
CVSSv3
CVE-2022-20940
A vulnerability in the TLS handler of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to gain access to sensitive information. This vulnerability is due to improper implementation of countermeasures against a Bleichenbacher atta...
Cisco Firepower Threat Defense 6.6.0.1
Cisco Firepower Threat Defense 6.6.0
Cisco Firepower Threat Defense 7.1.0.0
Cisco Firepower Threat Defense
Cisco Firepower Threat Defense 6.6.1
Cisco Firepower Threat Defense 6.6.3
Cisco Firepower Threat Defense 6.6.4
Cisco Firepower Threat Defense 6.6.5
Cisco Firepower Threat Defense 6.6.5.1
Cisco Firepower Threat Defense 6.6.5.2
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
8.8
CVSSv3
CVE-2016-1297
The Device Manager GUI in Cisco Application Control Engine (ACE) 4710 A5 before A5(3.1) allows remote authenticated users to bypass intended RBAC restrictions and execute arbitrary CLI commands with admin privileges via an unspecified parameter in a POST request, aka Bug ID CSCul...
Cisco Application Control Engine Software A5\\(2.1\\)
Cisco Application Control Engine Software A5\\(2.0\\)
Cisco Application Control Engine Software A5\\(1.2\\)
Cisco Application Control Engine Software A5\\(1.1\\)
Cisco Application Control Engine Software A5\\(1.0\\)
Cisco Application Control Engine Software A5\\(3.0\\)
Cisco Application Control Engine Software A5\\(2.1e\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »