Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gui vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2020-3410
A vulnerability in the Common Access Card (CAC) authentication feature of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote malicious user to bypass authentication and access the FMC system. The attacker must have a valid CAC to initiate the ...
Cisco Firepower Management Center 6.6.0.1
Cisco Firepower Management Center 6.6.0
10
CVSSv2
CVE-2004-1099
Cisco Secure Access Control Server for Windows (ACS Windows) and Cisco Secure Access Control Server Solution Engine (ACS Solution Engine) 3.3.1, when the EAP-TLS protocol is enabled, does not properly handle expired or untrusted certificates, which allows remote malicious users t...
Cisco Secure Access Control Server 3.3\\(1\\)
Cisco Secure Access Control Server 3.3.1
Cisco Secure Acs Solution Engine
7.5
CVSSv2
CVE-2018-15441
A vulnerability in the web framework code of Cisco Prime License Manager (PLM) could allow an unauthenticated, remote malicious user to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation of user-supplied input in SQL queries. An attacker could ...
Cisco Prime License Manager
Cisco Prime License Manager 11.5\\(1\\)
5
CVSSv2
CVE-2004-1459
Cisco Secure Access Control Server (ACS) 3.2, when configured as a Light Extensible Authentication Protocol (LEAP) RADIUS proxy, allows remote malicious users to cause a denial of service (device crash) via certain LEAP authentication requests.
9
CVSSv2
CVE-2017-12226
A vulnerability in the web-based Wireless Controller GUI of Cisco IOS XE Software for Cisco 5760 Wireless LAN Controllers, Cisco Catalyst 4500E Supervisor Engine 8-E (Wireless) Switches, and Cisco New Generation Wireless Controllers (NGWC) 3850 could allow an authenticated, remot...
Cisco Ios Xe 3.7.1e
Cisco Ios Xe 3.7.2e
Cisco Ios Xe 3.7.4e
Cisco Ios Xe 3.7.3e
Cisco Ios Xe 3.7.5e
Cisco Ios Xe 3.7.0e
NA
CVE-2023-39171
SENEC Storage Box V1,V2 and V3 accidentially expose a management UI accessible with publicly known admin credentials.
Enbw Senec Storage Box Firmware
NA
CVE-2023-20223
A vulnerability in Cisco DNA Center could allow an unauthenticated, remote malicious user to read and modify data in a repository that belongs to an internal service on an affected device. This vulnerability is due to insufficient access control enforcement on API requests. An at...
Cisco Dna Center
8.5
CVSSv2
CVE-2010-3037
goform/websXMLAdminRequestCgi.cgi in Cisco Unified Videoconferencing (UVC) System 5110 and 5115, and possibly Unified Videoconferencing System 3545 and 5230, Unified Videoconferencing 3527 Primary Rate Interface (PRI) Gateway, Unified Videoconferencing 3522 Basic Rate Interfaces ...
Cisco Unified Videoconferencing System 5115 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 5110 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 5115
Cisco Unified Videoconferencing System 5110
Cisco Unified Videoconferencing System 3527 Primary Rate Interface Gateway Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3522 Basic Rate Interface Gateway Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3515 Multipoint Control Unit Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3545 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 5230 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3522 Basic Rate Interface Gateway
Cisco Unified Videoconferencing System 3515 Multipoint Control Unit
Cisco Unified Videoconferencing System 3545
Cisco Unified Videoconferencing System 5230
Cisco Unified Videoconferencing System 3527 Primary Rate Interface Gateway
NA
CVE-2022-20940
A vulnerability in the TLS handler of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to gain access to sensitive information. This vulnerability is due to improper implementation of countermeasures against a Bleichenbacher atta...
Cisco Firepower Threat Defense 6.6.0.1
Cisco Firepower Threat Defense 6.6.0
Cisco Firepower Threat Defense 7.1.0.0
Cisco Firepower Threat Defense
Cisco Firepower Threat Defense 6.6.1
Cisco Firepower Threat Defense 6.6.3
Cisco Firepower Threat Defense 6.6.4
Cisco Firepower Threat Defense 6.6.5
Cisco Firepower Threat Defense 6.6.5.1
Cisco Firepower Threat Defense 6.6.5.2
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
9
CVSSv2
CVE-2016-1297
The Device Manager GUI in Cisco Application Control Engine (ACE) 4710 A5 before A5(3.1) allows remote authenticated users to bypass intended RBAC restrictions and execute arbitrary CLI commands with admin privileges via an unspecified parameter in a POST request, aka Bug ID CSCul...
Cisco Application Control Engine Software A5\\(2.1\\)
Cisco Application Control Engine Software A5\\(2.0\\)
Cisco Application Control Engine Software A5\\(1.2\\)
Cisco Application Control Engine Software A5\\(1.1\\)
Cisco Application Control Engine Software A5\\(1.0\\)
Cisco Application Control Engine Software A5\\(3.0\\)
Cisco Application Control Engine Software A5\\(2.1e\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »