Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
internet key exchange internet key exchange 1 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2020-3583
Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to conduct cross-site scripting (XSS) attacks against a user of the w...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance Software
6.1
CVSSv3
CVE-2020-3580
Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to conduct cross-site scripting (XSS) attacks against a user of the w...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance Software
4 Github repositories
5.9
CVSSv3
CVE-2018-0131
A vulnerability in the implementation of RSA-encrypted nonces in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote malicious user to obtain the encrypted nonces of an Internet Key Exchange Version 1 (IKEv1) session. The vulnerability exists becau...
Cisco Ios Xe 15.5\\(3\\)s
Cisco Ios 15.5\\(3\\)s
2 Articles
5.9
CVSSv3
CVE-2016-1344
The IKEv2 implementation in Cisco IOS 15.0 up to and including 15.6 and IOS XE 3.3 up to and including 3.17 allows remote malicious users to cause a denial of service (device reload) via fragmented packets, aka Bug ID CSCux38417.
Cisco Ios Xe 3.8e 3.8.0e
Cisco Ios Xe 3.7s 3.7.2ts
Cisco Ios Xe 3.13s 3.13.2as
Cisco Ios Xe 3.10s 3.10.1xbs
Cisco Ios Xe 3.6e 3.6.2e
Cisco Ios Xe 3.16s 3.16.0s
Cisco Ios Xe 3.4s 3.4.0as
Cisco Ios Xe 3.7e 3.7.0e
Cisco Ios Xe 3.15s 3.15.0s
Cisco Ios Xe 3.14s 3.14.0s
Cisco Ios Xe 3.12s 3.12.3s
Cisco Ios Xe 3.5e 3.5.1e
Cisco Ios Xe 3.4sg 3.4.5sg
Cisco Ios Xe 3.11s 3.11.3s
Cisco Ios Xe 3.10s 3.10.5s
Cisco Ios Xe 3.13s 3.13.0s
Cisco Ios Xe 3.11s 3.11.2s
Cisco Ios Xe 3.12s 3.12.0s
Cisco Ios Xe 3.3sg 3.3.1sg
Cisco Ios Xe 3.4sg 3.4.2sg
Cisco Ios Xe 3.8s 3.8.1s
Cisco Ios Xe 3.8s 3.8.0s
3.7
CVSSv3
CVE-2015-4000
The TLS protocol 1.2 and previous versions, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle malicious users to conduct cipher-downgrade attacks by rewriting a ClientHello with D...
Openssl Openssl
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Hp Hp-ux B.11.31
Ibm Content Manager 8.5
Oracle Jrockit R28.3.6
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Oracle Jdk 1.8.0
Oracle Jre 1.7.0
Oracle Jre 1.6.0
Oracle Jre 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.6.0
Suse Linux Enterprise Server 11.0
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Suse Linux Enterprise Server 12
Apple Mac Os X
Apple Iphone Os
1 Nmap script
4 Github repositories
1 Article
NA
CVE-2021-1444
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. This ...
NA
CVE-2015-6429
The IKEv1 state machine in Cisco IOS 15.4 up to and including 15.6 and IOS XE 3.15 up to and including 3.17 allows remote malicious users to cause a denial of service (IPsec connection termination) via a crafted IKEv1 packet to a tunnel endpoint, aka Bug ID CSCuw08236.
Cisco Ios 15.5\\(2\\)t
Cisco Ios 15.5\\(3\\)m1
Cisco Ios 15.5\\(1\\)t
Cisco Ios 15.5\\(3\\)m
Cisco Ios 15.5\\(3\\)s
Cisco Ios 15.5\\(2\\)s
Cisco Ios 15.6\\(0.17\\)t
Cisco Ios 15.4\\(3\\)s
Cisco Ios 15.5\\(1\\)s
Cisco Ios 15.5\\(3\\)s1
Cisco Ios 15.6\\(1\\)t0a
Cisco Ios Xe 3.16s.1
Cisco Ios Xe 3.15s.2
Cisco Ios Xe 3.17s.1
Cisco Ios Xe 3.17s.0
Cisco Ios Xe 3.16s.0
Cisco Ios Xe 3.15s.1
Cisco Ios Xe 3.15s.0
NA
CVE-2015-6327
The IKEv1 implementation in Cisco Adaptive Security Appliance (ASA) software 7.2 and 8.2 prior to 8.2(5.58), 8.3 and 8.4 prior to 8.4(7.29), 8.5 up to and including 8.7 prior to 8.7(1.17), 9.0 prior to 9.0(4.37), 9.1 prior to 9.1(6.8), 9.2 prior to 9.2(4), and 9.3 prior to 9.3(3)...
Cisco Adaptive Security Appliance Software 9.3.2
Cisco Adaptive Security Appliance Software 9.1.1.4
Cisco Adaptive Security Appliance Software 9.1.4
Cisco Adaptive Security Appliance Software 8.6.1.12
Cisco Adaptive Security Appliance Software 9.2.2.7
Cisco Adaptive Security Appliance Software 9.1.5.21
Cisco Adaptive Security Appliance Software 9.1.3
Cisco Adaptive Security Appliance Software 9.1.2
Cisco Adaptive Security Appliance Software 9.2.3
Cisco Adaptive Security Appliance Software 9.3.1.1
Cisco Adaptive Security Appliance Software 9.1.1
Cisco Adaptive Security Appliance Software 9.2.2.8
Cisco Adaptive Security Appliance Software 9.3.1
Cisco Adaptive Security Appliance Software 9.1.2.8
Cisco Adaptive Security Appliance Software 9.1.5.15
Cisco Adaptive Security Appliance Software 9.1.5.10
Cisco Adaptive Security Appliance Software 9.2.1
Cisco Adaptive Security Appliance Software 9.3.2.2
Cisco Adaptive Security Appliance Software 9.1.5
Cisco Adaptive Security Appliance Software 9.2.2.4
Cisco Adaptive Security Appliance Software 9.1.5.12
Cisco Adaptive Security Appliance Software 9.1.3.2
NA
CVE-2015-0760
The IKEv1 implementation in Cisco ASA Software 7.x, 8.0.x, 8.1.x, and 8.2.x prior to 8.2.2.13 allows remote authenticated users to bypass XAUTH authentication via crafted IKEv1 packets, aka Bug ID CSCus47259.
Cisco Adaptive Security Appliance Software
1 Github repository
NA
CVE-2015-4047
racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote malicious users to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.
Ipsec-tools Ipsec-tools 0.8.2
Canonical Ubuntu Linux 12.04
Fedoraproject Fedora 20
Fedoraproject Fedora 21
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Acceleration Manager 13.0.0
F5 Big-ip Local Traffic Manager
F5 Big-ip Local Traffic Manager 13.0.0
F5 Big-ip Advanced Firewall Manager 13.0.0
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Analytics
F5 Big-ip Analytics 13.0.0
F5 Big-ip Access Policy Manager
F5 Big-ip Access Policy Manager 13.0.0
F5 Big-ip Application Security Manager
F5 Big-ip Application Security Manager 13.0.0
F5 Big-ip Domain Name System 13.0.0
F5 Big-ip Domain Name System
F5 Big-ip Global Traffic Manager
F5 Big-ip Edge Gateway
F5 Big-ip Link Controller
F5 Big-ip Link Controller 13.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »