Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2000-0945
The web configuration interface for Catalyst 3500 XL switches allows remote malicious users to execute arbitrary commands without authentication when the enable password is not set, via a URL containing the /exec/ directory.
Cisco Catalyst 3500 Xl
1 EDB exploit
1000
VMScore
CVE-2000-1054
Buffer overflow in CSAdmin module in CiscoSecure ACS Server 2.4(2) and previous versions allows remote malicious users to cause a denial of service and possibly execute arbitrary commands via a large packet.
Cisco Secure Access Control Server 2.4\\(2\\)
Cisco Secure Access Control Server 2.1
Cisco Secure Access Control Server 2.3\\(3\\)
1 EDB exploit
991
VMScore
CVE-2019-1652
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands. The vulnerability is due to...
Cisco Rv320 Firmware 1.4.2.15
Cisco Rv325 Firmware 1.4.2.15
2 EDB exploits
2 Metasploit modules
2 Github repositories
2 Articles
980
VMScore
CVE-2019-1936
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an authenticated, remote malicious user to execute arbitrary commands on the underlying Li...
Cisco Integrated Management Controller Supervisor
Cisco Integrated Management Controller Supervisor 2.1.0.0
Cisco Ucs Director 6.7\\(0.0.67265\\)
Cisco Ucs Director 6.0.0.0
Cisco Ucs Director 6.5.0.0
Cisco Ucs Director 6.6.0.0
Cisco Ucs Director 6.6.1.0
Cisco Ucs Director 6.7.0.0
Cisco Ucs Director 6.7.1.0
Cisco Ucs Director Express For Big Data 3.6.0.0
Cisco Ucs Director Express For Big Data 3.0.0.0
Cisco Ucs Director Express For Big Data 3.5.0.0
Cisco Ucs Director Express For Big Data 3.7.0.0
Cisco Ucs Director Express For Big Data 3.7.1.0
2 Metasploit modules
958
VMScore
CVE-2018-11776
Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or...
Apache Struts
3 EDB exploits
44 Github repositories
3 Articles
950
VMScore
CVE-2001-0537
HTTP server for Cisco IOS 11.3 to 12.2 allows malicious users to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.
Cisco Ios 12.1xg
Cisco Ios 12.0xc
Cisco Ios 11.3xa
Cisco Ios 12.0xr
Cisco Ios 12.1xm
Cisco Ios 12.1xi
Cisco Ios 12.0st
Cisco Ios 12.1e
Cisco Ios 12.1xc
Cisco Ios 11.3ma
Cisco Ios 12.1xp
Cisco Ios 12.1ya
Cisco Ios 12.1yd
Cisco Ios 12.0dc
Cisco Ios 12.0xq
Cisco Ios 12.1xs
Cisco Ios 12.2xe
Cisco Ios 12.0xe
Cisco Ios 12.1xy
Cisco Ios 12.0xd
Cisco Ios 11.3na
Cisco Ios 12.1xz
4 EDB exploits
940
VMScore
CVE-2022-20828
A vulnerability in the CLI parser of Cisco FirePOWER Software for Adaptive Security Appliance (ASA) FirePOWER module could allow an authenticated, remote malicious user to execute arbitrary commands on the underlying operating system of an affected ASA FirePOWER module as the roo...
Cisco Asa Firepower
1 Metasploit module
1 Github repository
1 Article
940
VMScore
CVE-2012-0284
Stack-based buffer overflow in the SetSource method in the Cisco Linksys PlayerPT ActiveX control 1.0.0.15 in PlayerPT.ocx on the Cisco WVC200 Wireless-G PTZ Internet video camera allows remote malicious users to execute arbitrary code via a long URL in the first argument (aka th...
Cisco Linksys Playerpt Activex Control 1.0.0.15
2 EDB exploits
940
VMScore
CVE-2008-3558
Stack-based buffer overflow in the WebexUCFObject ActiveX control in atucfobj.dll in Cisco WebEx Meeting Manager prior to 20.2008.2606.4919 allows remote malicious users to execute arbitrary code via a long argument to the NewObject method.
Cisco Webex Meeting Manager 20.2008.2601.4928
2 EDB exploits
936
VMScore
CVE-2013-2251
Apache Struts 2.0.0 up to and including 2.3.15 allows remote malicious users to execute arbitrary OGNL expressions via a parameter with a crafted (1) action:, (2) redirect:, or (3) redirectAction: prefix.
Apache Struts 2.2.3.1
Apache Struts 2.3.4
Apache Struts 2.3.14.1
Apache Struts 2.0.8
Apache Struts 2.1.2
Apache Struts 2.0.14
Apache Struts 2.1.8.1
Apache Struts 2.2.1.1
Apache Struts 2.0.1
Apache Struts 2.0.3
Apache Struts 2.3.12
Apache Struts 2.3.1.2
Apache Struts 2.0.11.1
Apache Struts 2.3.14.3
Apache Struts 2.3.15
Apache Struts 2.2.1
Apache Struts 2.1.3
Apache Struts 2.1.0
Apache Struts 2.1.8
Apache Struts 2.0.0
Apache Struts 2.3.1
Apache Struts 2.3.7
1 EDB exploit
4 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »