Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security appliance vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-6639
A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Data Center Network Manager (DCNM) could allow an unauthenticated, remote malicious user to access sensitive information or execute arbitrary code with root privileges on an affected system. The ...
Cisco Prime Data Center Network Manager 10.1.0
Cisco Prime Data Center Network Manager 10.1\\(2\\)
Cisco Prime Data Center Network Manager 10.1\\(1\\)
9.8
CVSSv3
CVE-2017-6640
A vulnerability in Cisco Prime Data Center Network Manager (DCNM) Software could allow an unauthenticated, remote malicious user to log in to the administrative console of a DCNM server by using an account that has a default, static password. The account could be granted root- or...
Cisco Prime Data Center Network Manager 10.1.0
Cisco Prime Data Center Network Manager 10.1\\(2\\)
Cisco Prime Data Center Network Manager 10.1\\(1\\)
1 Github repository
9.1
CVSSv3
CVE-2020-3187
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to conduct directory traversal attacks and obtain read and delete access to se...
Cisco Firepower Threat Defense
Cisco Asa 5505 Firmware 9.6\\(4\\)
Cisco Asa 5510 Firmware 9.6\\(4\\)
Cisco Asa 5512-x Firmware 9.6\\(4\\)
Cisco Asa 5515-x Firmware 9.6\\(4\\)
Cisco Asa 5520 Firmware 9.6\\(4\\)
Cisco Asa 5525-x Firmware 9.6\\(4\\)
Cisco Asa 5540 Firmware 9.6\\(4\\)
Cisco Asa 5545-x Firmware 9.6\\(4\\)
Cisco Asa 5550 Firmware 9.6\\(4\\)
Cisco Asa 5555-x Firmware 9.6\\(4\\)
Cisco Asa 5580 Firmware 9.6\\(4\\)
Cisco Asa 5585-x Firmware 9.6\\(4\\)
Cisco Adaptive Security Appliance Software
3 Github repositories
1 Article
9
CVSSv3
CVE-2021-45046
It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with...
Apache Log4j 2.0
Apache Log4j
Intel Oneapi -
Intel Audio Development Kit -
Intel Datacenter Manager -
Intel System Debugger -
Intel Secure Device Onboard -
Intel Sensor Solution Firmware Development Kit -
Intel Computer Vision Annotation Tool -
Intel Genomics Kernel Library -
Intel System Studio -
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
196 Github repositories
9 Articles
8.8
CVSSv3
CVE-2022-20868
A vulnerability in the web-based management interface of Cisco Email Security Appliance, Cisco Secure Email and Web Manager and Cisco Secure Web Appliance could allow an authenticated, remote malicious user to elevate privileges on an affected system. The attacker needs valid cre...
Cisco Asyncos
Cisco Asyncos 14.5
8.8
CVSSv3
CVE-2022-20759
A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, but unprivileged, remote malicious user to elevate privileges to level ...
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance Software
8.8
CVSSv3
CVE-2021-34748
A vulnerability in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote malicious user to perform a command injection attack on an affected device. This vulnerability is due to insufficient input validation. An attacker cou...
Cisco Intersight Virtual Appliance
8.8
CVSSv3
CVE-2021-1359
A vulnerability in the configuration management of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. This vulnerability is due to insufficient validation of user-su...
Cisco Web Security Appliance 11.8.0-429
Cisco Web Security Appliance 11.8.0-453
Cisco Asyncos
8.8
CVSSv3
CVE-2021-1272
A vulnerability in the session validation feature of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote malicious user to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. This vulnerability is due to...
Cisco Data Center Network Manager
8.8
CVSSv3
CVE-2019-15956
A vulnerability in the web management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform an unauthorized system reset on an affected device. The vulnerability is due to improper authorization c...
Cisco Asyncos
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 11.7.0-fcs-418
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »