Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco security manager vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-1620
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote malicious user to upload arbitrary files on an affected device. The vulnerability is due to incorrect permission settings in affected DCNM soft...
Cisco Data Center Network Manager 11.0(1)
1 EDB exploit
9.8
CVSSv3
CVE-2019-1821
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote malicious user to execute code with root-level privileges on the underlying operating system. This vu...
Cisco Evolved Programmable Network Manager
Cisco Network Level Service 3.0(0.0.83b)
Cisco Prime Infrastructure
2 EDB exploits
1 Github repository
1 Article
9.8
CVSSv3
CVE-2018-15441
A vulnerability in the web framework code of Cisco Prime License Manager (PLM) could allow an unauthenticated, remote malicious user to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation of user-supplied input in SQL queries. An attacker could ...
Cisco Prime License Manager
Cisco Prime License Manager 11.5(1)
9.8
CVSSv3
CVE-2018-15427
A vulnerability in Cisco Video Surveillance Manager (VSM) Software running on certain Cisco Connected Safety and Security Unified Computing System (UCS) platforms could allow an unauthenticated, remote malicious user to log in to an affected system by using the root account, whic...
Cisco Video Surveillance Manager 7.10
Cisco Video Surveillance Manager 7.11
Cisco Video Surveillance Manager 7.11.1
9.8
CVSSv3
CVE-2018-0375
A vulnerability in the Cluster Manager of Cisco Policy Suite prior to 18.2.0 could allow an unauthenticated, remote malicious user to log in to an affected system using the root account, which has default, static user credentials. The vulnerability is due to the presence of undoc...
Cisco Mobility Services Engine 14.0.0
Cisco Policy Suite
9.8
CVSSv3
CVE-2018-0258
A vulnerability in the Cisco Prime File Upload servlet affecting multiple Cisco products could allow a remote malicious user to upload arbitrary files to any directory of a vulnerable device (aka Path Traversal) and execute those files. This vulnerability affects the following pr...
Cisco Prime Data Center Network Manager 10.0(1)
Cisco Prime Data Center Network Manager 10.2(1)
Cisco Prime Infrastructure 3.3(0.0)
1 Article
9.8
CVSSv3
CVE-2018-0124
A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote malicious user to bypass security protections, gain elevated privileges, and execute arbitrary code. The vulnerability is due to insecure key generation during application config...
Cisco Unified Communications Domain Manager
2 Github repositories
9.8
CVSSv3
CVE-2017-12337
A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could allow an unauthenticated, remote malicious user to gain unauthorized, elevated access to an affected device. The vulnerability occurs when a ...
Cisco Finesse -
Cisco Hosted Collaboration Solution -
Cisco Emergency Responder -
Cisco Unity Connection -
Cisco Socialminer -
Cisco Mediasense -
Cisco Unified Communications Manager -
Cisco Prime License Manager -
Cisco Unified Communications Manager Im And Presence Service -
Cisco Unified Intelligence Center -
Cisco Unified Contact Center Express -
9.8
CVSSv3
CVE-2017-12611
In Apache Struts 2.0.0 up to and including 2.3.33 and 2.5 up to and including 2.5.10.1, using an unintentional expression in a Freemarker tag instead of string literals can lead to a RCE attack.
Apache Struts 2.3.1.1
Apache Struts 2.0.9
Apache Struts 2.5.9
Apache Struts 2.3.5
Apache Struts 2.0.12
Apache Struts 2.2.3.1
Apache Struts 2.3.28
Apache Struts 2.1.0
Apache Struts 2.3.20.2
Apache Struts 2.5
Apache Struts 2.3.15
Apache Struts 2.3.25
Apache Struts 2.5.2
Apache Struts 2.3.14
Apache Struts 2.0.8
Apache Struts 2.3.32
Apache Struts 2.0.7
Apache Struts 2.0.4
Apache Struts 2.3.13
Apache Struts 2.2.1
Apache Struts 2.3.16
Apache Struts 2.3.24.2
1 Github repository
1 Article
9.8
CVSSv3
CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »