Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2024-20272
A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unauthenticated, remote malicious user to upload arbitrary files to an affected system and execute commands on the underlying operating system. This vulnerability is due to a lack of au...
Cisco Unity Connection
9.8
CVSSv3
CVE-2023-31488
Hyland Perceptive Filters releases prior to 2023-12-08 (e.g., 11.4.0.2647), as used in Cisco IronPort Email Security Appliance Software, Cisco Secure Email Gateway, and various non-Cisco products, allow malicious users to trigger a segmentation fault and execute arbitrary code vi...
Cisco Ironport Email Security Appliance -
Cisco Secure Email Gateway Firmware -
9.8
CVSSv3
CVE-2023-50164
An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. Users are recommended to upgrade to versions Struts 2.5.33 or Struts 6.3.0.2 or gre...
Apache Struts
13 Github repositories
2 Articles
9.8
CVSSv3
CVE-2023-38545
This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 byte...
Haxx Libcurl
Fedoraproject Fedora 37
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Microsoft Windows 10 22h2
Microsoft Windows 11 21h2
Microsoft Windows 11 22h2
Microsoft Windows 11 23h2
Microsoft Windows 10 1809
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows 10 21h2
9 Github repositories
2 Articles
9.8
CVSSv3
CVE-2023-20101
A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote malicious user to log in to an affected device using the root account, which has default, static credentials that cannot be changed or deleted. This vulnerability is due to the presence of static ...
Cisco Emergency Responder 12.5\\(1\\)su4
1 Article
9.8
CVSSv3
CVE-2023-20252
A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an unauthenticated, remote malicious user to gain unauthorized access to the application as an arbitrary user. This vulnerability is due to improper authent...
Cisco Catalyst Sd-wan Manager 20.9.3.2
Cisco Catalyst Sd-wan Manager 20.11.1.2
9.8
CVSSv3
CVE-2023-20238
A vulnerability in the single sign-on (SSO) implementation of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote malicious user to forge the credentials required to access an affected system. This v...
Cisco Broadworks Application Delivery Platform Ri.2023.06
Cisco Broadworks Application Delivery Platform Ri.2023.07
Cisco Broadworks Xtended Services Platform
Cisco Broadworks Xtended Services Platform 2023.06
Cisco Broadworks Xtended Services Platform 2023.07
9.8
CVSSv3
CVE-2023-20156
Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These ...
Cisco Business 250-16p-2g Firmware -
Cisco Business 250-16t-2g Firmware -
Cisco Business 250-24fp-4g Firmware -
Cisco Business 250-24fp-4x Firmware -
Cisco Business 250-24p-4g Firmware -
Cisco Business 250-24p-4x Firmware -
Cisco Business 250-24pp-4g Firmware -
Cisco Business 250-24t-4g Firmware -
Cisco Business 250-24t-4x Firmware -
Cisco Business 250-48p-4g Firmware -
Cisco Business 250-48p-4x Firmware -
Cisco Business 250-48pp-4g Firmware -
Cisco Business 250-48t-4g Firmware -
Cisco Business 250-48t-4x Firmware -
Cisco Business 250-8fp-e-2g Firmware -
Cisco Business 250-8p-e-2g Firmware -
Cisco Business 250-8pp-d Firmware -
Cisco Business 250-8pp-e-2g Firmware -
Cisco Business 250-8t-d Firmware -
Cisco Business 250-8t-e-2g Firmware -
Cisco Business 350-12np-4x Firmware -
Cisco Business 350-12xs Firmware -
9.8
CVSSv3
CVE-2023-20157
Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These ...
Cisco Business 250-16p-2g Firmware -
Cisco Business 250-16t-2g Firmware -
Cisco Business 250-24fp-4g Firmware -
Cisco Business 250-24fp-4x Firmware -
Cisco Business 250-24p-4g Firmware -
Cisco Business 250-24p-4x Firmware -
Cisco Business 250-24pp-4g Firmware -
Cisco Business 250-24t-4g Firmware -
Cisco Business 250-24t-4x Firmware -
Cisco Business 250-48p-4g Firmware -
Cisco Business 250-48p-4x Firmware -
Cisco Business 250-48pp-4g Firmware -
Cisco Business 250-48t-4g Firmware -
Cisco Business 250-48t-4x Firmware -
Cisco Business 250-8fp-e-2g Firmware -
Cisco Business 250-8p-e-2g Firmware -
Cisco Business 250-8pp-d Firmware -
Cisco Business 250-8pp-e-2g Firmware -
Cisco Business 250-8t-d Firmware -
Cisco Business 250-8t-e-2g Firmware -
Cisco Business 350-12np-4x Firmware -
Cisco Business 350-12xs Firmware -
9.8
CVSSv3
CVE-2023-20158
Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These ...
Cisco Business 250-16p-2g Firmware -
Cisco Business 250-16t-2g Firmware -
Cisco Business 250-24fp-4g Firmware -
Cisco Business 250-24fp-4x Firmware -
Cisco Business 250-24p-4g Firmware -
Cisco Business 250-24p-4x Firmware -
Cisco Business 250-24pp-4g Firmware -
Cisco Business 250-24t-4g Firmware -
Cisco Business 250-24t-4x Firmware -
Cisco Business 250-48p-4g Firmware -
Cisco Business 250-48p-4x Firmware -
Cisco Business 250-48pp-4g Firmware -
Cisco Business 250-48t-4g Firmware -
Cisco Business 250-48t-4x Firmware -
Cisco Business 250-8fp-e-2g Firmware -
Cisco Business 250-8p-e-2g Firmware -
Cisco Business 250-8pp-d Firmware -
Cisco Business 250-8pp-e-2g Firmware -
Cisco Business 250-8t-d Firmware -
Cisco Business 250-8t-e-2g Firmware -
Cisco Business 350-12np-4x Firmware -
Cisco Business 350-12xs Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »