Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure remote services vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2023-20208
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote malicious user to conduct an XSS attack against a user of the web-based management interface of an affected device.
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
9.8
CVSSv3
CVE-2021-42013
It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by t...
Apache Http Server 2.4.49
Apache Http Server 2.4.50
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Jd Edwards Enterpriseone Tools
Oracle Secure Backup
Netapp Cloud Backup -
2 Metasploit modules
74 Github repositories
1 Article
8.6
CVSSv3
CVE-2019-1714
A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 Single Sign-On (SSO) for Clientless SSL VPN (WebVPN) and AnyConnect Remote Access VPN in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance Software
6.1
CVSSv3
CVE-2019-10092
In Apache HTTP Server 2.4.0-2.4.39, a limited cross-site scripting issue was reported affecting the mod_proxy error page. An attacker could cause the link on the error page to be malformed and instead point to a page of their choice. This would only be exploitable where a server ...
Apache Http Server
Opensuse Leap 15.0
Opensuse Leap 15.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Redhat Software Collection 1.0
Fedoraproject Fedora 30
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Netapp Clustered Data Ontap 9.6
Netapp Clustered Data Ontap
Oracle Enterprise Manager Ops Center 12.3.3
Oracle Secure Global Desktop 5.4
Oracle Enterprise Manager Ops Center 12.4.0
Oracle Secure Global Desktop 5.5
Oracle Communications Element Manager 8.2.0
Oracle Communications Element Manager 8.1.1
Oracle Communications Element Manager 8.1.0
Oracle Communications Element Manager 8.0.0
1 EDB exploit
2 Github repositories
NA
CVE-2009-0042
Multiple unspecified vulnerabilities in the Arclib library (arclib.dll) prior to 7.3.0.15 in the CA Anti-Virus engine for CA Anti-Virus for the Enterprise 7.1, r8, and r8.1; Anti-Virus 2007 v8 and 2008; Internet Security Suite 2007 v3 and 2008; and other CA products allow remote ...
Ca Threat Manager For The Enterprise R8
Ca Arcserve Backup R11.5 Nil
Ca Etrust Intrusion Detection 2.0
Ca Arcserve Backup R11.1
Ca Protection Suites R3
Ca Internet Security Suite 2008
Ca Etrust Intrusion Detection 3.0
Ca Protection Suites R3.1
Ca Arcserve Backup R12.0 Nil
Ca Internet Security Suite 2007 3
Ca Internet Security Suite Plus 2008
Ca Threat Manager For The Enterprise 8.1
Ca Protection Suites R2
Broadcom Anti-virus 2008
Broadcom Anti-virus 2007
Broadcom Antivirus Gateway 7.1
Broadcom Anti-spyware For The Enterprise 8.1
Broadcom Anti-spyware 2008
Broadcom Anti-spyware 2007
Broadcom Anti-virus Sdk
Broadcom Anti-virus For The Enterprise R8
Broadcom Anti-spyware For The Enterprise R8
8.8
CVSSv3
CVE-2023-20272
A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote malicious user to upload malicious files to the web root of the application. This vulnerability is due to insufficient file input validation. An attacker c...
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
NA
CVE-2003-0543
Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote malicious users to cause a denial of service (crash) via an SSL client certificate with certain ASN.1 tag values.
Openssl Openssl 0.9.6
Openssl Openssl 0.9.7
1 EDB exploit
NA
CVE-2003-0544
OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote malicious users to cause a denial of service (crash) via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used...
Openssl Openssl 0.9.6
Openssl Openssl 0.9.7
5.3
CVSSv3
CVE-2019-1982
A vulnerability in the HTTP traffic filtering component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote malicious user to bypass filtering protections. The...
Cisco Firepower Management Center 2.9.13
Cisco Firepower Threat Defense -
Cisco Firepower Services Software For Asa -
Cisco Firepower Management Center 2.9.14.0
Cisco Firepower Management Center 3.0.0
NA
CVE-2005-1247
webadmin.exe in Novell Nsure Audit 1.0.1 allows remote malicious users to cause a denial of service via malformed ASN.1 packets in corrupt client certificates to an SSL server, as demonstrated using an exploit for the OpenSSL ASN.1 parsing vulnerability.
Novell Nsure Audit 1.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »