Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco firepower threat defense 7.1.0.1 vulnerabilities and exploits
(subscribe to this query)
4.9
CVSSv3
CVE-2022-20949
A vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker with high privileges to execute configuration commands on an affected system. This vulnerability exists because access to HTTPS endpoints is...
Cisco Firepower Threat Defense 6.2.1
Cisco Firepower Threat Defense
Cisco Firepower Threat Defense 7.1.0.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
Cisco Firepower Threat Defense 7.2.0
8.6
CVSSv3
CVE-2023-20244
A vulnerability in the internal packet processing of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Firewalls could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerabilit...
Cisco Firepower Threat Defense 6.2.3
Cisco Firepower Threat Defense 6.2.3.1
Cisco Firepower Threat Defense 6.2.3.2
Cisco Firepower Threat Defense 6.2.3.3
Cisco Firepower Threat Defense 6.2.3.4
Cisco Firepower Threat Defense 6.2.3.5
Cisco Firepower Threat Defense 6.2.3.6
Cisco Firepower Threat Defense 6.2.3.7
Cisco Firepower Threat Defense 6.2.3.8
Cisco Firepower Threat Defense 6.2.3.9
Cisco Firepower Threat Defense 6.2.3.10
Cisco Firepower Threat Defense 6.2.3.11
Cisco Firepower Threat Defense 6.2.3.12
Cisco Firepower Threat Defense 6.2.3.13
Cisco Firepower Threat Defense 6.2.3.14
Cisco Firepower Threat Defense 6.2.3.15
Cisco Firepower Threat Defense 6.2.3.16
Cisco Firepower Threat Defense 6.2.3.17
Cisco Firepower Threat Defense 6.2.3.18
Cisco Firepower Threat Defense 6.4.0
Cisco Firepower Threat Defense 6.4.0.1
Cisco Firepower Threat Defense 6.4.0.2
7.5
CVSSv3
CVE-2022-20795
A vulnerability in the implementation of the Datagram TLS (DTLS) protocol in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause high CPU utilization, resulting in a deni...
Cisco Adaptive Security Appliance
Cisco Adaptive Security Appliance Software
Cisco Firepower Threat Defense
6.5
CVSSv3
CVE-2022-20922
Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote malicious user to bypass the configured policies or cause a denial of service (DoS) condition on an affe...
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
Cisco Firepower Threat Defense 7.2.0
Cisco Umbrella Insights Virtual Appliance 1.5.5
Cisco Umbrella Insights Virtual Appliance 1.5.6
Cisco Umbrella Insights Virtual Appliance 2.0.0
Cisco Umbrella Insights Virtual Appliance 2.0.2
Cisco Umbrella Insights Virtual Appliance 2.0.3
Cisco Umbrella Insights Virtual Appliance 2.1.0
Cisco Umbrella Insights Virtual Appliance 2.1.2
Cisco Umbrella Insights Virtual Appliance 2.1.5
Cisco Umbrella Insights Virtual Appliance 2.1.4
Cisco Umbrella Insights Virtual Appliance 2.4.12
Cisco Umbrella Insights Virtual Appliance 2.4.6
Cisco Umbrella Insights Virtual Appliance 2.4
Cisco Umbrella Insights Virtual Appliance 2.4.4
Cisco Umbrella Insights Virtual Appliance 2.5
Cisco Umbrella Insights Virtual Appliance 2.5.4
Cisco Umbrella Insights Virtual Appliance 2.5.5
Cisco Umbrella Insights Virtual Appliance 2.5.6
7.5
CVSSv3
CVE-2021-33193
A crafted method sent through HTTP/2 will bypass validation and be forwarded by mod_proxy, which can lead to request splitting or cache poisoning. This issue affects Apache HTTP Server 2.4.17 to 2.4.48.
Apache Http Server
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Tenable Tenable.sc
Oracle Zfs Storage Appliance Kit 8.8
Oracle Secure Backup
1 Github repository
9.8
CVSSv3
CVE-2021-39275
ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and previous versions.
Apache Http Server
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Cloud Backup -
Netapp Storagegrid -
Netapp Clustered Data Ontap -
Oracle Http Server 12.2.1.3.0
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
Siemens Sinema Server 14.0
Siemens Sinec Nms
7.5
CVSSv3
CVE-2021-36160
A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive).
Apache Http Server
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Cloud Backup -
Netapp Storagegrid -
Netapp Clustered Data Ontap -
Oracle Http Server 12.2.1.3.0
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
Oracle Enterprise Manager Base Platform 13.5.0.0
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 1.10.0
Broadcom Brocade Fabric Operating System Firmware -
9
CVSSv3
CVE-2021-40438
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and previous versions.
Apache Http Server
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Cloud Backup -
Netapp Storagegrid -
Netapp Clustered Data Ontap -
F5 F5os
Oracle Http Server 12.2.1.3.0
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Http Server 12.2.1.4.0
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Zfs Storage Appliance Kit 8.8
Oracle Secure Global Desktop 5.6
Siemens Sinema Server 14.0
Siemens Sinec Nms
13 Github repositories
7.5
CVSSv3
CVE-2021-34798
Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and previous versions.
Apache Http Server
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Cloud Backup -
Netapp Storagegrid -
Netapp Clustered Data Ontap -
Tenable Tenable.sc
Oracle Http Server 12.2.1.3.0
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
Oracle Enterprise Manager Base Platform 13.5.0.0
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 1.10.0
Broadcom Brocade Fabric Operating System Firmware -
Siemens Sinema Server 14.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3