Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ssl vpn vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2009-2631
Multiple clientless SSL VPN products that run in web browsers, including Stonesoft StoneGate; Cisco ASA; SonicWALL E-Class SSL VPN and SonicWALL SSL VPN; SafeNet SecureWire Access Gateway; Juniper Networks Secure Access; Nortel CallPilot; Citrix Access Gateway; and other products...
Sonicwall E-class Ssl Vpn
Sonicwall Ssl Vpn
Stonesoft Stonegate
Cisco Adaptive Security Appliance
Aladdin Safenet Securewire Access Gateway
4.3
CVSSv2
CVE-2012-4043
Cross-site scripting (XSS) vulnerability in global-protect/login.esp in Palo Alto Networks Global Protect Portal, Global Protect Gateway, and SSL VPN portals 3.1.x up to and including 3.1.11 and 4.0.x up to and including 4.0.5 allows remote malicious users to inject arbitrary web...
Palo Alto Networks Global Protect Portal
Palo Alto Global Protected Gateway 4.0
Palo Alto Global Protected Gateway 4.0.5
Palo Alto Ssl Vpn 3.1
Palo Alto Ssl Vpn 4.0
Palo Alto Ssl Vpn 3.1.11
Palo Alto Global Protected Gateway 3.1.11
Palo Alto Ssl Vpn 4.0.5
Palo Alto Global Protected Gateway 3.1
NA
CVE-2023-5593
The out-of-bounds write vulnerability in the Windows-based SecuExtender SSL VPN Client software version 4.0.4.0 could allow an authenticated local user to gain a privilege escalation by sending a crafted CREATE message.
Zyxel Secuextender Ssl Vpn 4.0.4.0
4.3
CVSSv2
CVE-2008-2637
Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass SSL VPN 6.0.2 hotfix 3, and possibly earlier versions, allow remote malicious users to inject arbitrary web script or HTML via quotes in (1) the css_exceptions parameter in vdesk/admincon/webyfiers.php and (2) the...
F5 Firepass Ssl Vpn 6.0.2
2 EDB exploits
4
CVSSv2
CVE-2019-12677
A vulnerability in the Secure Sockets Layer (SSL) VPN feature of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition that prevents the creation of new SSL/Transport Layer Security (TLS) ...
Cisco Adaptive Security Appliance Software
1 Article
5
CVSSv2
CVE-2020-3529
A vulnerability in the SSL VPN negotiation process for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause a reload of an affected device, resulting in a denial of servic...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance
Cisco Adaptive Security Appliance Software
5.4
CVSSv2
CVE-2013-4669
FortiClient prior to 4.3.5.472 on Windows, prior to 4.0.3.134 on Mac OS X, and prior to 4.0 on Android; FortiClient Lite prior to 4.3.4.461 on Windows; FortiClient Lite 2.0 up to and including 2.0.0223 on Android; and FortiClient SSL VPN prior to 4.0.2258 on Linux proceed with an...
Fortinet Forticlient
Fortinet Forticlient Lite
Fortinet Forticlient Ssl Vpn
7.8
CVSSv2
CVE-2020-3358
A vulnerability in the Secure Sockets Layer (SSL) VPN feature for Cisco Small Business RV VPN Routers could allow an unauthenticated, remote malicious user to cause the device to unexpectedly restart, causing a denial of service (DoS) condition. The vulnerability is due to a lack...
Cisco Rv340 Dual Wan Gigabit Vpn Router Firmware
Cisco Rv340w Dual Wan Gigabit Wireless-ac Vpn Router Firmware
Cisco Rv345 Dual Wan Gigabit Vpn Router Firmware
Cisco Rv345p Dual Wan Gigabit Poe Vpn Router Firmware
1 Article
7
CVSSv2
CVE-2022-20737
A vulnerability in the handler for HTTP authentication for resources accessed through the Clientless SSL VPN portal of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition on an affected ...
Cisco Adaptive Security Appliance Software
NA
CVE-2022-23746
The IPsec VPN blade has a dedicated portal for downloading and connecting through SSL Network Extender (SNX). If the portal is configured for username/password authentication, it is vulnerable to a brute-force attack on usernames and passwords.
Checkpoint Ssl Network Extender R81.10
Checkpoint Ssl Network Extender R80.20
Checkpoint Ssl Network Extender R80.20sp
Checkpoint Ssl Network Extender R80.30
Checkpoint Ssl Network Extender R80.30sp
Checkpoint Ssl Network Extender R80.40
Checkpoint Ssl Network Extender R81
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »