Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
level vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-0686
Cisco Unified Communications Manager (aka Unified CM) 9.1 (2.10000.28) and previous versions allows local users to gain privileges by leveraging incorrect file permissions, aka Bug IDs CSCul24917 and CSCul24908.
Cisco Unified Communications Manager 9.1\\(1\\)
Cisco Unified Communications Manager
Cisco Unified Communications Manager 9.1\\(2\\)
7.1
CVSSv3
CVE-2021-1530
A vulnerability in the web-based management interface of Cisco BroadWorks Messaging Server Software could allow an authenticated, remote malicious user to access sensitive information or cause a partial denial of service (DoS) condition on an affected system. This vulnerability i...
Cisco Broadworks Messaging Server 22.0
4.7
CVSSv3
CVE-2021-1616
A vulnerability in the H.323 application level gateway (ALG) used by the Network Address Translation (NAT) feature of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to bypass the ALG. This vulnerability is due to insufficient data validation of traffi...
Cisco Ios Xe
NA
CVE-2024-28098
The vulnerability allows authenticated users with only produce or consume permissions to modify topic-level policies, such as retention, TTL, and offloading settings. These management operations should be restricted to users with the tenant admin role or super user role. This iss...
7.5
CVSSv3
CVE-2020-3422
A vulnerability in the IP Service Level Agreement (SLA) responder feature of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause the IP SLA responder to reuse an existing port, resulting in a denial of service (DoS) condition. The vulnerability ex...
Cisco Ios Xe 16.9.3
7.8
CVSSv3
CVE-2019-9510
A vulnerability in Microsoft Windows 10 1803 and Windows Server 2019 and later systems can allow authenticated RDP-connected clients to gain access to user sessions without needing to interact with the Windows lock screen. Should a network anomaly trigger a temporary RDP disconne...
Microsoft Windows 10 1803
Microsoft Windows Server 2019 -
9.8
CVSSv3
CVE-2019-1976
A vulnerability in the “plug-and-play” services component of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote malicious user to access sensitive information on an affected device. The vulnerability is due to improper access restri...
Cisco Industrial Network Director
Cisco Network Level Service 1.6\\(0.369\\)
8.6
CVSSv3
CVE-2019-1737
A vulnerability in the processing of IP Service Level Agreement (SLA) packets by Cisco IOS Software and Cisco IOS XE software could allow an unauthenticated, remote malicious user to cause an interface wedge and an eventual denial of service (DoS) condition on the affected device...
Cisco Ios Xe 3.2.0se
Cisco Ios Xe 3.2.1se
Cisco Ios Xe 3.2.2se
Cisco Ios Xe 3.2.3se
Cisco Ios Xe 3.3.0se
Cisco Ios Xe 3.3.0xo
Cisco Ios Xe 3.3.1se
Cisco Ios Xe 3.3.1xo
Cisco Ios Xe 3.3.2se
Cisco Ios Xe 3.3.2xo
Cisco Ios Xe 3.3.3se
Cisco Ios Xe 3.3.4se
Cisco Ios Xe 3.3.5se
Cisco Ios Xe 3.4.0sg
Cisco Ios Xe 3.4.1sg
Cisco Ios Xe 3.4.2sg
Cisco Ios Xe 3.4.3sg
Cisco Ios Xe 3.4.4sg
Cisco Ios Xe 3.4.5sg
Cisco Ios Xe 3.4.6sg
Cisco Ios Xe 3.4.7sg
Cisco Ios Xe 3.4.8sg
4.4
CVSSv3
CVE-2017-12289
A vulnerability in conditional, verbose debug logging for the IPsec feature of Cisco IOS XE Software could allow an authenticated, local malicious user to display sensitive IPsec information in the system log file. The vulnerability is due to incorrect implementation of IPsec con...
Cisco Ios
8.8
CVSSv3
CVE-2019-9730
Incorrect access control in the CxUtilSvc component of the Synaptics Sound Device drivers prior to version 2.29 allows a local malicious user to increase access privileges to the Windows Registry via an unpublished API.
Synaptics Sound Device
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »