Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco application policy infrastructure controller software vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-0372
A vulnerability in the DHCPv6 feature of the Cisco Nexus 9000 Series Fabric Switches in Application-Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote malicious user to cause the device to run low on system memory, which could result in a Denial of Service (...
Cisco Nx-os 13.0\\(1k\\)
5.3
CVSSv3
CVE-2018-0395
A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition when the device unexpectedly reloads. The vulnerability...
Cisco Nx-os 6.0\\(4\\)
Cisco Nx-os 6.1\\(3\\)s2
Cisco Firepower Extensible Operating System R231
Cisco Nx-os R231
Cisco Nx-os 12.3\\(1e\\)
Cisco Nx-os 3.2\\(3d\\)c
6.5
CVSSv3
CVE-2019-1890
A vulnerability in the fabric infrastructure VLAN connection establishment of the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, adjacent malicious user to bypass security validations and connect an unauthoriz...
Cisco Application Policy Infrastructure Controller 7.3\\(0\\)zn\\(0.113\\)
7.8
CVSSv3
CVE-2016-1420
The installation component on Cisco Application Policy Infrastructure Controller (APIC) devices with software prior to 1.3(2f) mishandles binary files, which allows local users to obtain root access via unspecified vectors, aka Bug ID CSCuz72347.
Cisco Application Infrastructure Controller -
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(2j\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(1n\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(1k\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(1h\\)
Cisco Application Policy Infrastructure Controller Firmware 1.1\\(1j\\)
Cisco Application Policy Infrastructure Controller Firmware 1.1\\(0.920a\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(4o\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(4h\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(3n\\)
Cisco Application Policy Infrastructure Controller Firmware 1.1\\(3f\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(3i\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(2m\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(1e\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(3k\\)
Cisco Application Policy Infrastructure Controller Firmware 1.0\\(3f\\)
6.5
CVSSv3
CVE-2021-1228
A vulnerability in the fabric infrastructure VLAN connection establishment of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, adjacent malicious user to bypass security validations and connect an unauthorize...
Cisco Nx-os 11.0\\(1b\\)
Cisco Nx-os 11.0\\(1c\\)
Cisco Nx-os 11.0\\(1d\\)
Cisco Nx-os 11.0\\(1e\\)
Cisco Nx-os 11.0\\(2j\\)
Cisco Nx-os 11.0\\(2m\\)
Cisco Nx-os 11.0\\(3f\\)
Cisco Nx-os 11.0\\(3i\\)
Cisco Nx-os 11.0\\(3k\\)
Cisco Nx-os 11.0\\(3n\\)
Cisco Nx-os 11.0\\(3o\\)
Cisco Nx-os 11.0\\(4g\\)
Cisco Nx-os 11.0\\(4h\\)
Cisco Nx-os 11.0\\(4o\\)
Cisco Nx-os 11.0\\(4q\\)
Cisco Nx-os 11.1\\(1j\\)
Cisco Nx-os 11.1\\(1o\\)
Cisco Nx-os 11.1\\(1r\\)
Cisco Nx-os 11.1\\(1s\\)
Cisco Nx-os 11.1\\(2h\\)
Cisco Nx-os 11.1\\(2i\\)
Cisco Nx-os 11.1\\(3f\\)
7.5
CVSSv3
CVE-2017-3873
A vulnerability in the Plug-and-Play (PnP) subsystem of the Cisco Aironet 1800, 2800, and 3800 Series Access Points running a Lightweight Access Point (AP) or Mobility Express image could allow an unauthenticated, adjacent malicious user to execute arbitrary code with root privil...
Cisco Aironet Access Point Firmware 8.3 102.0
10
CVSSv3
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1162 Github repositories
28 Articles
6.6
CVSSv3
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0
Apache Log4j
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Weblogic Server 12.2.1.4.0
Oracle Primavera Unifier 19.12
Oracle Weblogic Server 14.1.1.0.0
Oracle Primavera Unifier 20.12
Oracle Communications Interactive Session Recorder 6.3
Oracle Communications Interactive Session Recorder 6.4
Oracle Primavera Gateway
Oracle Retail Assortment Planning 16.0.3
Oracle Primavera Unifier 21.12
Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Primavera Gateway 21.12.0
Oracle Retail Fiscal Management 14.2
Oracle Siebel Ui Framework 21.12
Oracle Communications Diameter Signaling Router
Cisco Cloudcenter 4.10.0.16
Fedoraproject Fedora 34
Fedoraproject Fedora 35
34 Github repositories
4 Articles
6.5
CVSSv3
CVE-2015-7851
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp Ntp
Ntp Ntp 4.2.8
9.8
CVSSv3
CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »