Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ssl vpn vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2009-2631
Multiple clientless SSL VPN products that run in web browsers, including Stonesoft StoneGate; Cisco ASA; SonicWALL E-Class SSL VPN and SonicWALL SSL VPN; SafeNet SecureWire Access Gateway; Juniper Networks Secure Access; Nortel CallPilot; Citrix Access Gateway; and other products...
Cisco Adaptive Security Appliance
Sonicwall E-class Ssl Vpn
Sonicwall Ssl Vpn
Stonesoft Stonegate
Aladdin Safenet Securewire Access Gateway
4.3
CVSSv2
CVE-2012-4043
Cross-site scripting (XSS) vulnerability in global-protect/login.esp in Palo Alto Networks Global Protect Portal, Global Protect Gateway, and SSL VPN portals 3.1.x up to and including 3.1.11 and 4.0.x up to and including 4.0.5 allows remote malicious users to inject arbitrary web...
Palo Alto Networks Global Protect Portal
Palo Alto Global Protected Gateway 3.1.11
Palo Alto Global Protected Gateway 3.1
Palo Alto Global Protected Gateway 4.0
Palo Alto Ssl Vpn 4.0.5
Palo Alto Global Protected Gateway 4.0.5
Palo Alto Ssl Vpn 3.1
Palo Alto Ssl Vpn 3.1.11
Palo Alto Ssl Vpn 4.0
NA
CVE-2023-5593
The out-of-bounds write vulnerability in the Windows-based SecuExtender SSL VPN Client software version 4.0.4.0 could allow an authenticated local user to gain a privilege escalation by sending a crafted CREATE message.
Zyxel Secuextender Ssl Vpn 4.0.4.0
4.3
CVSSv2
CVE-2008-2637
Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass SSL VPN 6.0.2 hotfix 3, and possibly earlier versions, allow remote malicious users to inject arbitrary web script or HTML via quotes in (1) the css_exceptions parameter in vdesk/admincon/webyfiers.php and (2) the...
F5 Firepass Ssl Vpn 6.0.2
2 EDB exploits
4
CVSSv2
CVE-2019-12677
A vulnerability in the Secure Sockets Layer (SSL) VPN feature of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition that prevents the creation of new SSL/Transport Layer Security (TLS) ...
Cisco Adaptive Security Appliance Software
1 Article
5
CVSSv2
CVE-2020-3529
A vulnerability in the SSL VPN negotiation process for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause a reload of an affected device, resulting in a denial of servic...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance
Cisco Adaptive Security Appliance Software
7.8
CVSSv2
CVE-2020-3358
A vulnerability in the Secure Sockets Layer (SSL) VPN feature for Cisco Small Business RV VPN Routers could allow an unauthenticated, remote malicious user to cause the device to unexpectedly restart, causing a denial of service (DoS) condition. The vulnerability is due to a lack...
Cisco Rv340 Dual Wan Gigabit Vpn Router Firmware
Cisco Rv340w Dual Wan Gigabit Wireless-ac Vpn Router Firmware
Cisco Rv345 Dual Wan Gigabit Vpn Router Firmware
Cisco Rv345p Dual Wan Gigabit Poe Vpn Router Firmware
1 Article
7
CVSSv2
CVE-2022-20737
A vulnerability in the handler for HTTP authentication for resources accessed through the Clientless SSL VPN portal of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition on an affected ...
Cisco Adaptive Security Appliance Software
NA
CVE-2022-23746
The IPsec VPN blade has a dedicated portal for downloading and connecting through SSL Network Extender (SNX). If the portal is configured for username/password authentication, it is vulnerable to a brute-force attack on usernames and passwords.
Checkpoint Ssl Network Extender R81.10
Checkpoint Ssl Network Extender R80.20
Checkpoint Ssl Network Extender R80.20sp
Checkpoint Ssl Network Extender R80.30
Checkpoint Ssl Network Extender R80.30sp
Checkpoint Ssl Network Extender R80.40
Checkpoint Ssl Network Extender R81
7.1
CVSSv2
CVE-2001-0427
Cisco VPN 3000 series concentrators prior to 2.5.2(F) allow remote malicious users to cause a denial of service via a flood of invalid login requests to (1) the SSL service, or (2) the telnet service, which do not properly disconnect the user after several failed login attempts.
Cisco Vpn 3030 Concentator
Cisco Vpn 3060 Concentrator
Cisco Vpn 3005 Concentrator
Cisco Vpn 3015 Concentrator
Cisco Vpn 3000 Concentrator
Cisco Vpn 3080 Concentrator
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »