Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

security access manager 9.0 firmware vulnerabilities and exploits

(subscribe to this query)
6.5
CVSSv3
CVE-2019-5108
An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to send IAPP location updates for stations before the required authentication process has completed. This could lead to d...
Linux Linux KernelDebian Debian Linux 8.0Debian Debian Linux 9.0Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Netapp Cloud Backup -Netapp Steelstore Cloud Integrated Storage -Netapp Data Availability Services -Netapp Solidfire -Netapp Hci Management Node -Netapp Active Iq Unified Manager -Netapp E-series Santricity Os ControllerNetapp A700s Firmware -Netapp H610s Firmware -Netapp 8300 Firmware -Netapp 8700 Firmware -Netapp A400 Firmware -Oracle Sd-wan Edge 8.2
5.5
CVSSv3
CVE-2019-19462
relay_open in kernel/relay.c in the Linux kernel up to and including 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.
Linux Linux KernelNetapp Active Iq Unified ManagerNetapp Solidfire -Netapp Hci Management Node -Netapp Hci Storage Node -Netapp Hci Compute Node -Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 20.04Opensuse Leap 15.1Opensuse Leap 15.2Debian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0
6.5
CVSSv3
CVE-2018-12207
Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.
Intel Core I3-10110u Firmware -Intel Core I3-10110y Firmware -Intel Core I3-1005g1 Firmware -Intel Core I3-9300t Firmware -Intel Core I3-9300 Firmware -Intel Core I3-9100 Firmware -Intel Core I3-9100t Firmware -Intel Core I3-9350k Firmware -Intel Core I3-9320 Firmware -Intel Core I3-8145u Firmware -Intel Core I3-8300 Firmware -Intel Core I3-8100t Firmware -Intel Core I3-8300t Firmware -Intel Core I3-8109u Firmware -Intel Core I3-8130u Firmware -Intel Core I3-8100 Firmware -Intel Core I3-8350k Firmware -Intel Core I3-7100 Firmware -Intel Core I3-7350k Firmware -Intel Core I3-7300t Firmware -Intel Core I3-7167u Firmware -Intel Core I3-7300 Firmware -
6.5
CVSSv3
CVE-2019-11135
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.
Opensuse Leap 15.0Opensuse Leap 15.1Fedoraproject Fedora 30Fedoraproject Fedora 31Slackware Slackware 14.2Hp Apollo 4200 FirmwareHp Apollo 2000 FirmwareHp Proliant Bl460c FirmwareHp Proliant Dl580 FirmwareHp Proliant Dl560 FirmwareHp Proliant Dl380 FirmwareHp Proliant Dl360 FirmwareHp Proliant Dl180 FirmwareHp Proliant Dl160 FirmwareHp Proliant Dl120 FirmwareHp Proliant Dl20 FirmwareHp Proliant Ml350 FirmwareHp Proliant Ml110 FirmwareHp Proliant Ml30 FirmwareHp Proliant Xl450 FirmwareHp Proliant Xl270d FirmwareHp Proliant Xl230k Firmware
5.6
CVSSv3
CVE-2017-5715
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
Intel Atom C C2308Intel Atom C C2316Intel Atom C C2338Intel Atom C C2350Intel Atom C C2358Intel Atom C C2508Intel Atom C C2516Intel Atom C C2518Intel Atom C C2530Intel Atom C C2538Intel Atom C C2550Intel Atom C C2558Intel Atom C C2718Intel Atom C C2730Intel Atom C C2738Intel Atom C C2750Intel Atom C C2758Intel Atom C C3308Intel Atom C C3338Intel Atom C C3508Intel Atom C C3538Intel Atom C C3558
6.8
CVSSv3
CVE-2017-13084
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
Freebsd Freebsd 11Freebsd Freebsd 11.1Redhat Enterprise Linux Desktop 7Freebsd FreebsdCanonical Ubuntu Linux 17.04Canonical Ubuntu Linux 16.04Freebsd Freebsd 10Freebsd Freebsd 10.4Opensuse Leap 42.3Opensuse Leap 42.2Debian Debian Linux 9.0Debian Debian Linux 8.0Canonical Ubuntu Linux 14.04Redhat Enterprise Linux Server 7W1.fi Hostapd 2.3W1.fi Hostapd 2.2W1.fi Hostapd 0.6.9W1.fi Hostapd 0.6.8W1.fi Hostapd 0.4.10W1.fi Hostapd 0.4.9W1.fi Hostapd 0.4.8W1.fi Hostapd 0.2.6
5.3
CVSSv3
CVE-2017-13079
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the four-way handshake, allowing an attacker within radio range to spoof frames from access points to clients.
Debian Debian Linux 9.0Debian Debian Linux 8.0Canonical Ubuntu Linux 14.04Redhat Enterprise Linux Server 7Freebsd Freebsd 10Freebsd Freebsd 10.4Opensuse Leap 42.2Canonical Ubuntu Linux 17.04Canonical Ubuntu Linux 16.04Freebsd Freebsd 11Freebsd Freebsd 11.1Redhat Enterprise Linux Desktop 7Freebsd FreebsdOpensuse Leap 42.3W1.fi Hostapd 2.4W1.fi Hostapd 2.3W1.fi Hostapd 0.6.10W1.fi Hostapd 0.6.9W1.fi Hostapd 0.4.11W1.fi Hostapd 0.4.10W1.fi Hostapd 0.4.9W1.fi Hostapd 0.2.8
5.3
CVSSv3
CVE-2017-13081
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the group key handshake, allowing an attacker within radio range to spoof frames from access points to clients.
Debian Debian Linux 8.0Freebsd Freebsd 11Redhat Enterprise Linux Server 7Redhat Enterprise Linux Desktop 7Freebsd Freebsd 10.4Canonical Ubuntu Linux 17.04Opensuse Leap 42.2Debian Debian Linux 9.0Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 14.04Freebsd Freebsd 11.1Freebsd Freebsd 10Freebsd FreebsdOpensuse Leap 42.3W1.fi Hostapd 2.4W1.fi Hostapd 2.3W1.fi Hostapd 0.6.9W1.fi Hostapd 0.6.8W1.fi Hostapd 0.4.10W1.fi Hostapd 0.4.9W1.fi Hostapd 0.2.8W1.fi Hostapd 0.2.6
7.5
CVSSv3
CVE-2015-5012
The SSH implementation on IBM Security Access Manager for Web appliances 7.0 prior to 7.0.0 FP19, 8.0 prior to 8.0.1.3 IF3, and 9.0 prior to 9.0.0.0 IF1 does not properly restrict the set of MAC algorithms, which makes it easier for remote malicious users to defeat cryptographic ...
Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.10Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.11Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.12Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.18Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.16Ibm Security Access Manager 9.0 Firmware 9.0.0Ibm Security Access Manager For Web 8.0 Firmware 8.0.0.1Ibm Security Access Manager For Web 8.0 Firmware 8.0.0.2Ibm Security Access Manager For Web 8.0 Firmware 8.0.0.3Ibm Security Access Manager For Web 8.0 Firmware 8.0.0.5Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.5Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.6Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.7Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.8Ibm Security Access Manager For Web 8.0 Firmware 8.0.1Ibm Security Access Manager For Web 8.0 Firmware 8.0.1.2Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.2Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.4Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.9Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.14Ibm Security Access Manager For Web 8.0 Firmware 8.0.1.0Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.1
7.5
CVSSv3
CVE-2015-5010
IBM Security Access Manager for Web 7.0 prior to 7.0.0 IF21, 8.0 prior to 8.0.1.3 IF4, and 9.0 prior to 9.0.0.1 IF1 does not have a lockout mechanism for invalid login attempts, which makes it easier for remote malicious users to obtain access via a brute-force attack.
Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.9Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.8Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.7Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.6Ibm Security Access Manager For Web 8.0 Firmware 8.0.1.2Ibm Security Access Manager For Web 8.0 Firmware 8.0.1.0Ibm Security Access Manager For Web 8.0 Firmware 8.0.1Ibm Security Access Manager For Web 8.0 Firmware 8.0.0.5Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.18Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.19Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.20Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.12Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.15Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.13Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.5Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.3Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.17Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.11Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.1Ibm Security Access Manager For Web 8.0 Firmware 8.0.0.2Ibm Security Access Manager 9.0 Firmware 9.0.0Ibm Security Access Manager For Web 7.0 Firmware 7.0.0.16
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310CVE-2024-21683CVE-2024-22187chromedeserializationXPath injectionCVE-2024-27842denial of serviceCVE-2024-24851googleCVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook