Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web gateway vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-35336
Tieline IP Audio Gateway 2.6.4.8 and below is affected by Incorrect Access Control. A vulnerability in the Tieline Web Administrative Interface could allow an unauthenticated user to access a sensitive part of the system with a high privileged account.
Tieline Ip Audtio Gateway Firmware
9
CVSSv2
CVE-2021-30648
The Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are susceptible to an authentication bypass vulnerability. An unauthenticated attacker can execute arbitrary CLI commands, view/modify the appliance configuration and policy, and shutdown/restart the a...
Broadcom Symantec Proxysg
Broadcom Symantec Advanced Secure Gateway S200-30 Firmware
Broadcom Symantec Advanced Secure Gateway S200-40 Firmware
Broadcom Symantec Advanced Secure Gateway S400-20 Firmware
Broadcom Symantec Advanced Secure Gateway S400-30 Firmware
Broadcom Symantec Advanced Secure Gateway S400-40 Firmware
Broadcom Symantec Advanced Secure Gateway 500-10 Firmware
Broadcom Symantec Advanced Secure Gateway S500-20 Firmware
2.1
CVSSv2
CVE-2021-20575
IBM Security Verify Access 20.07 allows web pages to be stored locally which can be read by another user on the system. X-Force ID: 199278.
Ibm Application Gateway 1.0
Ibm Security Verify Access 20.07
7.5
CVSSv2
CVE-2021-22893
Pulse Connect Secure 9.0R3/9.1R1 and higher is vulnerable to an authentication bypass vulnerability exposed by the Windows File Share Browser and Pulse Secure Collaboration features of Pulse Connect Secure that can allow an unauthenticated user to perform remote arbitrary code ex...
Ivanti Connect Secure 9.1
Ivanti Connect Secure 9.0
9 Github repositories
6 Articles
2.7
CVSSv2
CVE-2021-23884
Cleartext Transmission of Sensitive Information vulnerability in the ePO Extension of McAfee Content Security Reporter (CSR) before 2.8.0 allows an ePO administrator to view the unencrypted password of the McAfee Web Gateway (MWG) or the password of the McAfee Web Gateway Cloud S...
Mcafee Content Security Reporter
4.3
CVSSv2
CVE-2020-23761
Cross Site Scripting (XSS) vulnerability in subrion CMS Version <= 4.2.1 allows remote malicious users to execute arbitrary web script via the "payment gateway" column on transactions tab.
Intelliants Subrion
5
CVSSv2
CVE-2020-6590
Forcepoint Web Security Content Gateway versions before 8.5.4 improperly process XML input, leading to information disclosure.
Forcepoint Web Security Content Gateway
Forcepoint Data Loss Prevention
Forcepoint Email Security
5
CVSSv2
CVE-2021-23007
On BIG-IP versions 14.1.4 and 16.0.1.1, when the Traffic Management Microkernel (TMM) process handles certain undisclosed traffic, it may start dropping all fragmented IP traffic. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.
F5 Big-ip Access Policy Manager 16.0.1.1
F5 Big-ip Advanced Firewall Manager 16.0.1.1
F5 Big-ip Advanced Web Application Firewall 16.0.1.1
F5 Big-ip Analytics 16.0.1.1
F5 Big-ip Application Acceleration Manager 16.0.1.1
F5 Big-ip Application Security Manager 16.0.1.1
F5 Big-ip Ddos Hybrid Defender 16.0.1.1
F5 Big-ip Domain Name System 16.0.1.1
F5 Big-ip Edge Gateway 16.0.1.1
F5 Big-ip Fraud Protection Service 16.0.1.1
F5 Big-ip Local Traffic Manager 16.0.1.1
F5 Big-ip Policy Enforcement Manager 16.0.1.1
F5 Big-ip Ssl Orchestrator 16.0.1.1
F5 Big-ip Webaccelerator 16.0.1.1
F5 Big-ip Global Traffic Manager 16.0.1.1
F5 Big-ip Link Controller 16.0.1.1
F5 Big-ip Access Policy Manager 14.1.4
F5 Big-ip Advanced Firewall Manager 14.1.4
F5 Big-ip Advanced Web Application Firewall 14.1.4
F5 Big-ip Analytics 14.1.4
F5 Big-ip Application Acceleration Manager 14.1.4
F5 Big-ip Application Security Manager 14.1.4
4.3
CVSSv2
CVE-2021-3449
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_ce...
Openssl Openssl
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Freebsd Freebsd 12.2
Netapp Santricity Smi-s Provider -
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager -
Netapp Cloud Volumes Ontap Mediator -
Netapp E-series Performance Analyzer -
Tenable Tenable.sc
Tenable Nessus
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Tenable Log Correlation Engine
Fedoraproject Fedora 34
5 Github repositories
1 Article
5.8
CVSSv2
CVE-2021-3450
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve paramet...
Openssl Openssl
Freebsd Freebsd 12.2
Netapp Santricity Smi-s Provider Firmware -
Netapp Storagegrid Firmware -
Windriver Linux -
Windriver Linux 18.0
Windriver Linux 19.0
Windriver Linux 17.0
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Ontap Select Deploy Administration Utility -
Netapp Cloud Volumes Ontap Mediator -
Fedoraproject Fedora 34
Tenable Nessus Agent
Tenable Nessus
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Oracle Jd Edwards World Security A9.4
Oracle Weblogic Server 12.2.1.4.0
1 Github repository
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »