Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web gateway vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-26292
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud (login_submit.mhtml modules), Forcepoint Web Security Portal on Hybri...
Forcepoint Cloud Security Gateway
Forcepoint Web Security
NA
CVE-2023-26290
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud (login_reset_request.mhtml modules), Forcepoint Web Security Portal o...
Forcepoint Cloud Security Gateway
Forcepoint Web Security
NA
CVE-2023-26291
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud (login_form.mhtml modules), Forcepoint Web Security Portal on Hybrid ...
Forcepoint Cloud Security Gateway
Forcepoint Web Security
NA
CVE-2023-20009
A vulnerability in the Web UI and administrative CLI of the Cisco Secure Email Gateway (ESA) and Cisco Secure Email and Web Manager (SMA) could allow an authenticated remote attacker and or authenticated local malicious user to escalate their privilege level and gain root access....
Cisco Secure Email And Web Manager
Cisco Email Security Appliance
NA
CVE-2023-20075
Vulnerability in the CLI of Cisco Secure Email Gateway could allow an authenticated, remote malicious user to execute arbitrary commands. These vulnerability is due to improper input validation in the CLI. An attacker could exploit this vulnerability by injecting operating system...
Cisco Email Security Appliance
NA
CVE-2022-47767
A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super administration privileges to the attacker. This affects all Solar-Log devices that use firmware version v4.2.7 up to v5.1.1 (included).
Solar-log Solar-log 250 Firmware
Solar-log Solar-log 300 Firmware
Solar-log Solar-log 500 Firmware
Solar-log Solar-log 800e Firmware
Solar-log Solar-log 1000 Firmware
Solar-log Solar-log 1000 Pm\\+ Firmware
Solar-log Solar-log 1200 Firmware
Solar-log Solar-log 2000 Firmware
Solar-log Solar-log 50 Firmware
NA
CVE-2020-22657
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gateway 200 (SCG200) prior to 3.6.2.0.795, SmartZone 100 (SZ-100) prior to 3.6.2.0.795, SmartZone 300 (SZ300)...
Ruckuswireless R310 Firmware 10.5.1.0.199
Ruckuswireless R500 Firmware 10.5.1.0.199
Ruckuswireless R600 Firmware 10.5.1.0.199
Ruckuswireless T300 Firmware 10.5.1.0.199
Ruckuswireless T301n Firmware 10.5.1.0.199
Ruckuswireless T301s Firmware 10.5.1.0.199
Ruckuswireless Scg200 Firmware
Ruckuswireless Sz-100 Firmware
Ruckuswireless Sz-300 Firmware
Ruckuswireless Vsz Firmware
Ruckuswireless Zonedirector 1100 Firmware 9.10.2.0.130
Ruckuswireless Zonedirector 1200 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 3000 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 5000 Firmware 10.0.1.0.151
NA
CVE-2020-22662
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gateway 200 (SCG200) prior to 3.6.2.0.795, SmartZone 100 (SZ-100) prior to 3.6.2.0.795, SmartZone 300 (SZ300)...
Ruckuswireless R310 Firmware 10.5.1.0.199
Ruckuswireless R500 Firmware 10.5.1.0.199
Ruckuswireless R600 Firmware 10.5.1.0.199
Ruckuswireless T300 Firmware 10.5.1.0.199
Ruckuswireless T301n Firmware 10.5.1.0.199
Ruckuswireless T301s Firmware 10.5.1.0.199
Ruckuswireless Scg200 Firmware
Ruckuswireless Sz-100 Firmware
Ruckuswireless Sz-300 Firmware
Ruckuswireless Vsz Firmware
Ruckuswireless Zonedirector 1100 Firmware 9.10.2.0.130
Ruckuswireless Zonedirector 1200 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 3000 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 5000 Firmware 10.0.1.0.151
NA
CVE-2023-0214
A cross-site scripting vulnerability in Skyhigh SWG in main releases 11.x before 11.2.6, 10.x before 10.2.17, and controlled release 12.x before 12.0.1 allows a remote malicious user to craft SWG-specific internal requests with URL paths to any third-party website, causing arbitr...
Trellix Skyhigh Secure Web Gateway 12.0.0
Trellix Skyhigh Secure Web Gateway
NA
CVE-2022-23854
AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.
Aveva Intouch Access Anywhere 2020
Aveva Intouch Access Anywhere
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »