Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security access manager for web appliance vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2017-1480
IBM Security Access Manager Appliance 8.0.0 up to and including 8.0.1.6, and 9.0.0 up to and including 9.0.3.1 stores potentially sensitive information in log files that could be read by a remote user. IBM X-Force ID: 128617.
Ibm Security Access Manager
Ibm Security Access Manager For Web
Ibm Security Access Manager For Mobile
5.3
CVSSv3
CVE-2017-1474
IBM Security Access Manager Appliance 7.0.0, 8.0.0 up to and including 8.0.1.6, and 9.0.0 up to and including 9.0.3.1 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 128606.
Ibm Security Access Manager
Ibm Security Access Manager For Mobile
Ibm Security Access Manager For Web
5.9
CVSSv3
CVE-2017-1476
IBM Security Access Manager Appliance 7.0.0, 8.0.0 up to and including 8.0.1.6, and 9.0.0 up to and including 9.0.3.1 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could ex...
Ibm Security Access Manager
Ibm Security Access Manager For Web
Ibm Security Access Manager For Mobile
5.5
CVSSv3
CVE-2015-5013
The IBM Security Access Manager appliance includes configuration files that contain obfuscated plaintext-passwords which authenticated users can access.
Ibm Security Access Manager For Web 8.0 Firmware
Ibm Security Access Manager For Mobile
Ibm Security Access Manager 9.0 Firmware
4.2
CVSSv3
CVE-2017-1459
IBM Security Access Manager Appliance 8.0.0 and 9.0.0 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 128378.
Ibm Security Access Manager For Web 8.0 Firmware
Ibm Security Access Manager For Mobile
Ibm Security Access Manager 9.0 Firmware
6.1
CVSSv3
CVE-2023-20119
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, formerly known as Content Security Management Appliance (SMA) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) atta...
Cisco Secure Email Gateway 14.0.1-053
Cisco Web Security Appliance 14.0.1-053
Cisco Secure Email And Web Manager 14.0.1-053
Cisco Secure Email And Web Manager 15.0.0-256
Cisco Secure Email Gateway 15.0.0-256
Cisco Web Security Appliance 15.0.0-256
Cisco Secure Email And Web Manager 14.0.1-033
Cisco Secure Email Gateway 14.0.1-033
Cisco Web Security Appliance 14.0.1-033
Cisco Secure Email And Web Manager 14.0.0-418
Cisco Secure Email Gateway 14.0.0-418
Cisco Web Security Appliance 14.0.0-418
Cisco Secure Email And Web Manager 15.0.0-050
Cisco Secure Email Gateway 15.0.0-050
Cisco Web Security Appliance 15.0.0-050
6.1
CVSSv3
CVE-2018-1815
IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 for Enterprise Single-Sign On is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality pot...
Ibm Security Access Manager
6.1
CVSSv3
CVE-2022-20713
A vulnerability in the VPN web client services component of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to conduct browser-based attacks against users of an affected devic...
Cisco Firepower Threat Defense 6.2.3
Cisco Firepower Threat Defense 6.2.3.1
Cisco Firepower Threat Defense 6.4.0
Cisco Firepower Threat Defense 6.2.3.13
Cisco Firepower Threat Defense 6.2.3.14
Cisco Firepower Threat Defense 6.2.3.15
Cisco Firepower Threat Defense 6.2.3.12
Cisco Firepower Threat Defense 6.6.0.1
Cisco Firepower Threat Defense 6.6.0
Cisco Adaptive Security Appliance Software 9.16.1
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense 7.0.0
Cisco Firepower Threat Defense 6.7.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.0.1
Cisco Firepower Threat Defense 7.0.0.1
Cisco Firepower Threat Defense 7.0.1.1
Cisco Firepower Threat Defense 7.0.2
Cisco Firepower Threat Defense 7.0.2.1
Cisco Firepower Threat Defense 7.0.3
Cisco Firepower Threat Defense 7.0.4
Cisco Firepower Threat Defense 6.6.1
8.6
CVSSv3
CVE-2017-12246
A vulnerability in the implementation of the direct authentication feature in Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote malicious user to cause an affected device to unexpectedly reload, resulting in a denial of service (DoS) conditio...
Cisco Adaptive Security Appliance Software 9.4(3)
Cisco Adaptive Security Appliance Software 9.7(1)
Cisco Adaptive Security Appliance Software 9.8(0.56)
7.7
CVSSv3
CVE-2022-20664
A vulnerability in the web management interface of Cisco Secure Email and Web Manager, formerly Cisco Security Management Appliance (SMA), and Cisco Email Security Appliance (ESA) could allow an authenticated, remote malicious user to retrieve sensitive information from a Lightwe...
Cisco Email Security Appliance
Cisco Secure Email And Web Manager
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »