Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote access vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2016-9683
The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to a Remote Command Injection vulnerability in its web administrative interface. This vulnerability occurs in the 'extensionsettings' CGI (/cgi-bin/extensionsettings) component responsible fo...
Dell Sonicwall Secure Remote Access Server 8.1.0.2-14sv
1 EDB exploit
10
CVSSv2
CVE-2016-9684
The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to a Remote Command Injection vulnerability in its web administrative interface. This vulnerability occurs in the 'viewcert' CGI (/cgi-bin/viewcert) component responsible for processing SSL c...
Dell Sonicwall Secure Remote Access Server 8.1.0.2-14sv
1 EDB exploit
6.9
CVSSv2
CVE-2012-2753
Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platform, Endpoint Security VPN R75, Endpoint Connect R73.x, and Remote Access Clients E75.x allows local users to gain privile...
Checkpoint Endpoint Security E80
Checkpoint Remote Access Clients E75.10
Checkpoint Endpoint Security E80.20
Checkpoint Endpoint Security E80.30
Checkpoint Endpoint Security Vpn R75
Checkpoint Endpoint Connect R73
Checkpoint Endpoint Security R73
Checkpoint Endpoint Security E80.10
Checkpoint Remote Access Clients E75
Checkpoint Remote Access Clients E75.20
6.8
CVSSv2
CVE-2020-15589
A design issue exists in GetInternetRequestHandle, InternetSendRequestEx and InternetSendRequestByBitrate in the client side of Zoho ManageEngine Desktop Central 10.0.552.W and Remote Access Plus prior to 10.1.2119.1. By exploiting this issue, an attacker-controlled server can fo...
Zohocorp Manageengine Desktop Central 10.0.552.w
Zohocorp Manageengine Remote Access Plus
1 Github repository
3.5
CVSSv2
CVE-2019-8458
Check Point Endpoint Security Client for Windows, with Anti-Malware blade installed, before version E81.00, tries to load a non-existent DLL during an update initiated by the UI. An attacker with administrator privileges can leverage this to gain code execution within a Check Poi...
Checkpoint Endpoint Security Clients
Checkpoint Remote Access Clients
Checkpoint Capsule Docs
6.8
CVSSv2
CVE-2019-8461
Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location a...
Checkpoint Capsule Docs Standalone Client
Checkpoint Remote Access Clients
Checkpoint Endpoint Security
4
CVSSv2
CVE-2015-6410
The Mobile and Remote Access (MRA) services implementation in Cisco Unified Communications Manager mishandles edge-device identity validation, which allows remote malicious users to bypass intended call-reception and call-setup restrictions by spoofing a user, aka Bug ID CSCuu972...
Cisco Telepresence Video Communication Server Software X8.5
4.9
CVSSv2
CVE-2016-7815
Remote Service Manager 3.0.0 to 3.1.4 fails to verify client certificates, which may allow remote malicious users to gain access to systems on the network.
Cybozu Remote Service Manager 3.0.0
Cybozu Remote Service Manager 3.0.1
Cybozu Remote Service Manager 3.1.0
Cybozu Remote Service Manager 3.1.2
Cybozu Remote Service Manager 3.1.4
Cybozu Remote Service Manager 3.1.1
Cybozu Remote Service Manager 3.1.3
4.6
CVSSv2
CVE-2019-11148
Improper permissions in the installer for Intel(R) Remote Displays SDK before version 2.0.1 R2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Remote Displays Sdk 2.0
Intel Remote Displays Sdk 1.0
Intel Remote Displays Sdk 1.1
1 Article
NA
CVE-2021-1444
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. This ...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »