Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pca vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6720
Directory traversal vulnerability in download.php in the Passive Capture Application (PCA) web console in IBM Tealeaf CX 7.x, 8.x up to and including 8.6, 8.7 before FP2, and 8.8 before FP2 allows remote authenticated users to bypass intended access restrictions via a .. (dot dot...
Ibm Tealeaf Cx 8.0
Ibm Tealeaf Cx 8.1
Ibm Tealeaf Cx 7.1
Ibm Tealeaf Cx 7.2
Ibm Tealeaf Cx 8.6
Ibm Tealeaf Cx 8.7
Ibm Tealeaf Cx 8.8
Ibm Tealeaf Cx 8.2
Ibm Tealeaf Cx 8.3
Ibm Tealeaf Cx 8.4
Ibm Tealeaf Cx 8.5
1 EDB exploit
NA
CVE-2001-0863
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the "fragment" keyword in a compiled ACL (Turbo ACL) for packets that are sent to the router, which allows remote malicious users to cause a denial of service via a flood of fragments.
Cisco 12000 Router
NA
CVE-2015-6390
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unity Connection 9.1(1.10) allows remote malicious users to inject arbitrary web script or HTML via a crafted value in a URL, aka Bug ID CSCup92741.
Cisco Unity Connection 9.1\\(1.10\\)
6.5
CVSSv3
CVE-2018-15450
A vulnerability in the web-based UI of Cisco Prime Collaboration Assurance could allow an authenticated, remote malicious user to overwrite files on the file system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by using a...
Cisco Prime Collaboration 12.1
8.8
CVSSv3
CVE-2017-6659
A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. More Information: CSCvc918...
Cisco Prime Collaboration Assurance 11.6
Cisco Prime Collaboration Assurance 11.5\\(0\\)
6.1
CVSSv3
CVE-2018-0458
A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulner...
Cisco Prime Collaboration Assurance 11.6.0
NA
CVE-2015-0769
Cisco IOS XR 4.0.1 up to and including 4.2.0 for CRS-3 Carrier Routing System allows remote malicious users to cause a denial of service (NPU ASIC scan and line-card reload) via crafted IPv6 extension headers, aka Bug ID CSCtx03546.
Cisco Ios Xr Software 4.1 Base
Cisco Ios Xr Software 4.1.0
Cisco Ios Xr Software 4.2.0
Cisco Ios Xr Software 4.1.1
Cisco Ios Xr Software 4.1.2
Cisco Ios Xr Software 4.0.1
Cisco Ios Xr Software 4.0.3
Cisco Ios Xr Software 4.0.11
Cisco Ios Xr Software 4.0.2
Cisco Ios Xr Software 4.0.4
1 Article
7.5
CVSSv3
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0a
Openssl Openssl 1.1.0b
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
7.5
CVSSv3
CVE-2017-3730
In OpenSSL 1.1.0 prior to 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0a
Oracle Agile Engineering Data Management 6.2.0
Oracle Jd Edwards World Security A9.2
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Application Session Controller 3.7.1
Oracle Jd Edwards World Security A9.4
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Agile Engineering Data Management 6.1.3
Oracle Jd Edwards World Security A9.1
Oracle Jd Edwards World Security A9.3
Oracle Communications Eagle Lnp Application Processor 10.0
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Communications Application Session Controller 3.8.0
1 EDB exploit
1 Github repository
1 Article
NA
CVE-2011-5005
Unrestricted file upload vulnerability in QuiXplorer 2.3 and previous versions allows remote malicious users to execute arbitrary code by uploading a file with an executable extension using the upload action to index.php, then accessing it via a direct request to the file in an u...
Mads Brunn T3quixplorer 1.7.0
Claudio Klingler Quixplorer 1.6
Claudio Klingler Quixplorer 1.1
Mads Brunn T3quixplorer 1.2.0
Mads Brunn T3quixplorer 1.6.0
Claudio Klingler Quixplorer 2.0
Claudio Klingler Quixplorer 1.2
Mads Brunn T3quixplorer 1.5.0
Mads Brunn T3quixplorer 1.0.0
Claudio Klingler Quixplorer 1.4
Mads Brunn T3quixplorer 1.7.1
Mads Brunn T3quixplorer 1.4.0
Claudio Klingler Quixplorer 1.0
Mads Brunn T3quixplorer 1.0.2
Mads Brunn T3quixplorer 1.0.1
Claudio Klingler Quixplorer 1.5
Mads Brunn T3quixplorer 1.3.0
Claudio Klingler Quixplorer 2.2
Claudio Klingler Quixplorer 2.1.1
Claudio Klingler Quixplorer
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »