Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tacacs vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-7232
Buffer overflow in the report function in xtacacsd 4.1.2 and previous versions allows remote malicious users to execute arbitrary code via a crafted CONNECT TACACS command.
Netplex-tech Xtacacsd 4.1
Netplex-tech Xtacacsd 4.0
Netplex-tech Xtacacsd 2.0
Netplex-tech Xtacacsd 3.3
Netplex-tech Xtacacsd 3.2
Netplex-tech Xtacacsd
Netplex-tech Xtacacsd 4.1.1
Netplex-tech Xtacacsd 3.1
Netplex-tech Xtacacsd 3.0
Netplex-tech Xtacacsd 3.5
Netplex-tech Xtacacsd 3.4
1 EDB exploit
NA
CVE-2008-2273
Unspecified vulnerability in the TACACS authentication component in Aruba Mobility Controller 3.1.x, 3.2.x, and 3.3.x allows remote authenticated users to gain privileges via unknown vectors.
Arubanetworks Arubaos 3.1
Arubanetworks Arubaos 3.2
Arubanetworks Arubaos
NA
CVE-2000-1055
Buffer overflow in CiscoSecure ACS Server 2.4(2) and previous versions allows remote malicious users to cause a denial of service and possibly execute arbitrary commands via a large TACACS+ packet.
Cisco Secure Access Control Server 2.4\\(2\\)
Cisco Secure Access Control Server 2.1
Cisco Secure Access Control Server 2.3\\(3\\)
7.5
CVSSv3
CVE-2023-44037
An issue in ZPE Systems, Inc Nodegrid OS v.5.8.10 thru v.5.8.13 and v.5.10.3 thru v.5.10.5 allows a remote malicious user to obtain sensitive information via the TACACS+ server component.
Zpesystems Nodegrid Os
5.5
CVSSv3
CVE-2023-43485
When TACACS+ audit forwarding is configured on BIG-IP or BIG-IQ system, sharedsecret is logged in plaintext in the audit log. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
F5 Big-iq Centralized Management
F5 Big-ip Access Policy Manager
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Application Security Manager
F5 Big-ip Domain Name System
F5 Big-ip Local Traffic Manager
F5 Big-ip Advanced Web Application Firewall
F5 Big-ip Analytics
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Visibility And Reporting
F5 Big-ip Carrier-grade Nat
F5 Big-ip Ddos Hybrid Defender
F5 Big-ip Fraud Protection Service
F5 Big-ip Global Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Ssl Orchestrator
F5 Big-ip Webaccelerator
F5 Big-ip Websafe
NA
CVE-2013-5470
Cisco Secure Access Control System (ACS) does not properly handle requests to read from the TACACS+ socket, which allows remote malicious users to cause a denial of service (process crash) via malformed TCP packets, aka Bug ID CSCuh12488.
Cisco Secure Access Control System -
6.5
CVSSv3
CVE-2021-36309
Dell Enterprise SONiC OS, versions 3.3.0 and previous versions, contains a sensitive information disclosure vulnerability. An authenticated malicious user with access to the system may use the TACACS\Radius credentials stored to read sensitive information and use it in further at...
Dell Enterprise Sonic Os
NA
CVE-2002-2140
Buffer overflow in Cisco PIX Firewall 5.2.x to 5.2.8, 6.0.x to 6.0.3, 6.1.x to 6.1.3, and 6.2.x to 6.2.1 allows remote malicious users to cause a denial of service via HTTP traffic authentication using (1) TACACS+ or (2) RADIUS.
Cisco Pix Firewall Software 6.0\\(3\\)
Cisco Pix Firewall Software 6.1
Cisco Pix Firewall Software 6.1\\(1\\)
Cisco Pix Firewall Software 6.1\\(2\\)
Cisco Pix Firewall Software 6.1\\(3\\)
Cisco Pix Firewall Software 5.2\\(4\\)
Cisco Pix Firewall Software 5.2\\(5\\)
Cisco Pix Firewall Software 5.2\\(6\\)
Cisco Pix Firewall Software 5.2\\(7\\)
Cisco Pix Firewall Software 5.2\\(1\\)
Cisco Pix Firewall Software 5.2\\(3\\)
Cisco Pix Firewall Software 5.2\\(8\\)
Cisco Pix Firewall Software 6.0\\(1\\)
Cisco Pix Firewall Software 6.2
Cisco Pix Firewall Software 5.2
Cisco Pix Firewall Software 5.2\\(2\\)
Cisco Pix Firewall Software 6.0
Cisco Pix Firewall Software 6.0\\(2\\)
Cisco Pix Firewall Software 6.2\\(1\\)
5.3
CVSSv3
CVE-2021-27793
ntermittent authorization failure in aaa tacacs+ with Brocade Fabric OS versions before Brocade Fabric OS v9.0.1b and after 9.0.0, also in Brocade Fabric OS before Brocade Fabric OS v8.2.3a and after v8.2.0 could cause a user with a valid account to be unable to log into the swit...
Broadcom Fabric Operating System
Broadcom Fabric Operating System 8.2.3
Broadcom Fabric Operating System 9.0.1
Broadcom Fabric Operating System 9.0.1a
4.9
CVSSv3
CVE-2023-6791
A credential disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-only administrator to obtain the plaintext credentials of stored external system integrations such as LDAP, SCP, RADIUS, TACACS+, and SNMP from the web interface.
Paloaltonetworks Pan-os
Paloaltonetworks Pan-os 11.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »