Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2024-20272
A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unauthenticated, remote malicious user to upload arbitrary files to an affected system and execute commands on the underlying operating system. This vulnerability is due to a lack of au...
Cisco Unity Connection
8
CVSSv3
CVE-2024-20277
A vulnerability in the web-based management interface of Cisco ThousandEyes Enterprise Agent, Virtual Appliance installation type, could allow an authenticated, remote malicious user to perform a command injection and elevate privileges to root. This vulnerability is due to insuf...
Cisco Thousandeyes Enterprise Agent
9.8
CVSSv3
CVE-2023-31488
Hyland Perceptive Filters releases prior to 2023-12-08 (e.g., 11.4.0.2647), as used in Cisco IronPort Email Security Appliance Software, Cisco Secure Email Gateway, and various non-Cisco products, allow malicious users to trigger a segmentation fault and execute arbitrary code vi...
Cisco Ironport Email Security Appliance -
Cisco Secure Email Gateway Firmware -
4.3
CVSSv3
CVE-2023-20275
A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote malicious user to send packets with another VPN user's source IP address. This vulnera...
Cisco Adaptive Security Appliance Software 9.16.1
Cisco Adaptive Security Appliance Software 9.8.2
Cisco Adaptive Security Appliance Software 9.8.3.18
Cisco Adaptive Security Appliance Software 9.8.3.26
Cisco Adaptive Security Appliance Software 9.12.2
Cisco Adaptive Security Appliance Software 9.8.2.24
Cisco Adaptive Security Appliance Software 9.8.3.16
Cisco Adaptive Security Appliance Software 9.8.4.29
Cisco Adaptive Security Appliance Software 9.12.2.5
Cisco Adaptive Security Appliance Software 9.12.4.4
Cisco Adaptive Security Appliance Software 9.8.2.20
Cisco Adaptive Security Appliance Software 9.8.4
Cisco Adaptive Security Appliance Software 9.8.4.26
Cisco Adaptive Security Appliance Software 9.14.1.30
Cisco Adaptive Security Appliance Software 9.14.1.15
Cisco Adaptive Security Appliance Software 9.8.2.26
Cisco Adaptive Security Appliance Software 9.8.2.28
Cisco Adaptive Security Appliance Software 9.8.2.33
Cisco Adaptive Security Appliance Software 9.8.2.35
Cisco Adaptive Security Appliance Software 9.8.2.38
Cisco Adaptive Security Appliance Software 9.8.4.8
Cisco Adaptive Security Appliance Software 9.8.4.10
9.8
CVSSv3
CVE-2023-50164
An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. Users are recommended to upgrade to versions Struts 2.5.33 or Struts 6.3.0.2 or gre...
Apache Struts
13 Github repositories
2 Articles
5.5
CVSSv3
CVE-2023-20241
Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local malicious user to cause a denial of service (DoS) condition on an affected system. These vulnerabilities are due to an out-of-bounds memory re...
Cisco Anyconnect Secure Mobility Client 4.9.00086
Cisco Anyconnect Secure Mobility Client 4.9.01095
Cisco Anyconnect Secure Mobility Client 4.9.02028
Cisco Anyconnect Secure Mobility Client 4.9.03047
Cisco Anyconnect Secure Mobility Client 4.9.03049
Cisco Anyconnect Secure Mobility Client 4.9.04043
Cisco Anyconnect Secure Mobility Client 4.9.04053
Cisco Anyconnect Secure Mobility Client 4.9.05042
Cisco Anyconnect Secure Mobility Client 4.9.06037
Cisco Secure Client 4.10.00093
Cisco Secure Client 4.10.01075
Cisco Secure Client 4.10.02086
Cisco Secure Client 4.10.03104
Cisco Secure Client 4.10.04065
Cisco Secure Client 4.10.04071
Cisco Secure Client 4.10.05085
Cisco Secure Client 4.10.05095
Cisco Secure Client 4.10.05111
Cisco Secure Client 4.10.06079
Cisco Secure Client 4.10.06090
Cisco Secure Client 4.10.07061
Cisco Secure Client 4.10.07062
5.5
CVSSv3
CVE-2023-20240
Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local malicious user to cause a denial of service (DoS) condition on an affected system. These vulnerabilities are due to an out-of-bounds memory re...
Cisco Anyconnect Secure Mobility Client 4.9.00086
Cisco Anyconnect Secure Mobility Client 4.9.01095
Cisco Anyconnect Secure Mobility Client 4.9.02028
Cisco Anyconnect Secure Mobility Client 4.9.03047
Cisco Anyconnect Secure Mobility Client 4.9.03049
Cisco Anyconnect Secure Mobility Client 4.9.04043
Cisco Anyconnect Secure Mobility Client 4.9.04053
Cisco Anyconnect Secure Mobility Client 4.9.05042
Cisco Anyconnect Secure Mobility Client 4.9.06037
Cisco Secure Client 4.10.00093
Cisco Secure Client 4.10.01075
Cisco Secure Client 4.10.02086
Cisco Secure Client 4.10.03104
Cisco Secure Client 4.10.04065
Cisco Secure Client 4.10.04071
Cisco Secure Client 4.10.05085
Cisco Secure Client 4.10.05095
Cisco Secure Client 4.10.05111
Cisco Secure Client 4.10.06079
Cisco Secure Client 4.10.06090
Cisco Secure Client 4.10.07061
Cisco Secure Client 4.10.07062
4.4
CVSSv3
CVE-2023-20084
A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authenticated, local malicious user to evade endpoint protection within a limited time window. This vulnerability is due to a timing issue that occurs between various software components....
Cisco Secure Endpoint 6.0.9
Cisco Secure Endpoint 6.0.7
Cisco Secure Endpoint 6.1.5
Cisco Secure Endpoint 6.1.7
Cisco Secure Endpoint 6.1.9
Cisco Secure Endpoint 6.2.1
Cisco Secure Endpoint 6.2.5
Cisco Secure Endpoint 6.2.19
Cisco Secure Endpoint 6.2.3
Cisco Secure Endpoint 6.2.9
Cisco Secure Endpoint 6.3.5
Cisco Secure Endpoint 6.3.1
Cisco Secure Endpoint 6.3.7
Cisco Secure Endpoint 6.3.3
Cisco Secure Endpoint 7.0.5
Cisco Secure Endpoint 7.1.1
Cisco Secure Endpoint 7.1.5
Cisco Secure Endpoint 7.2.13
Cisco Secure Endpoint 7.2.7
Cisco Secure Endpoint 7.2.3
Cisco Secure Endpoint 7.2.11
Cisco Secure Endpoint 7.2.5
5.4
CVSSv3
CVE-2023-20265
A vulnerability in the web-based management interface of a small subset of Cisco IP Phones could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulnerability is due to...
Cisco Ip Dect 110 Firmware
Cisco Ip Dect 210 Firmware
Cisco Unified Ip Phone 6901 Firmware
Cisco Unified Sip Phone 3905 Firmware
4.8
CVSSv3
CVE-2023-20208
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote malicious user to conduct an XSS attack against a user of the web-based management interface of an affected device.
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »