Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure access control server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-0748
Acme.Serve 1.7, as used in Cisco Secure ACS Unix and possibly other products, allows remote malicious users to read arbitrary files by prepending several / (slash) characters to the URI.
Acme Labs Acme Server 1.7
1 EDB exploit
8.8
CVSSv3
CVE-2019-11509
In Pulse Secure Pulse Connect Secure (PCS) prior to 8.1R15.1, 8.2 prior to 8.2R12.1, 8.3 prior to 8.3R7.1, and 9.0 prior to 9.0R3.4 and Pulse Policy Secure (PPS) prior to 5.1R15.1, 5.2 prior to 5.2R12.1, 5.3 prior to 5.3R15.1, 5.4 prior to 5.4R7.1, and 9.0 prior to 9.0R3.2, an au...
Ivanti Connect Secure 9.0
Ivanti Connect Secure 8.1
Ivanti Connect Secure 8.2
Ivanti Connect Secure 8.3
Pulsesecure Pulse Policy Secure 5.2
Pulsesecure Pulse Policy Secure 5.4
Ivanti Policy Secure 9.0
NA
CVE-2004-1459
Cisco Secure Access Control Server (ACS) 3.2, when configured as a Light Extensible Authentication Protocol (LEAP) RADIUS proxy, allows remote malicious users to cause a denial of service (device crash) via certain LEAP authentication requests.
NA
CVE-2001-1030
Squid prior to 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows malicious users to bypass the ACLs and conduct unauthorized activities such as port scanning.
Immunix Immunix 7.0 Beta
Mandrakesoft Mandrake Single Network Firewall 7.2
Immunix Immunix 6.2
Immunix Immunix 7.0
Squid Squid Web Proxy 2.3stable3
Squid Squid Web Proxy 2.3stable4
Caldera Openlinux Server 3.1
Redhat Linux 7.0
Trustix Secure Linux 1.01
Mandrakesoft Mandrake Linux 7.2
Mandrakesoft Mandrake Linux 8.0
Mandrakesoft Mandrake Linux Corporate Server 1.0.1
Trustix Secure Linux 1.1
Trustix Secure Linux 1.2
Mandrakesoft Mandrake Linux 7.1
NA
CVE-2006-2086
Buffer overflow in JuniperSetupDLL.dll, loaded from JuniperSetup.ocx by the Juniper SSL-VPN Client when accessing a Juniper NetScreen IVE device running IVE OS prior to 4.2r8.1, 5.0 prior to 5.0r6.1, 5.1 prior to 5.1r8, 5.2 prior to 5.2r4.1, or 5.3 prior to 5.3r2.1, allows remote...
Juniper Junipersetup Control
1 EDB exploit
7.2
CVSSv3
CVE-2020-3211
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote malicious user to execute arbitrary commands with root privileges on the underlying operating system of an affected device. The vulnerability is due to improper input sanitization. An atta...
Cisco Ios Xe 16.10.1
Cisco Ios Xe 16.10.1a
Cisco Ios Xe 16.10.1b
Cisco Ios Xe 16.10.1e
Cisco Ios Xe 16.10.1s
Cisco Ios Xe 16.10.2
Cisco Ios Xe 16.11.1
Cisco Ios Xe 16.11.1a
Cisco Ios Xe 16.11.1b
Cisco Ios Xe 16.11.1c
Cisco Ios Xe 16.11.1s
Cisco Ios Xe 16.12.1
Cisco Ios Xe 16.12.1a
Cisco Ios Xe 16.12.1c
Cisco Ios Xe 16.12.1s
Cisco Ios Xe 16.12.1t
4
CVSSv3
CVE-2023-20177
A vulnerability in the SSL file policy implementation of Cisco Firepower Threat Defense (FTD) Software that occurs when the SSL/TLS connection is configured with a URL Category and the Snort 3 detection engine could allow an unauthenticated, remote malicious user to cause the Sno...
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense 7.0.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.0.1
Cisco Firepower Threat Defense 7.0.0.1
Cisco Firepower Threat Defense 7.0.1.1
Cisco Firepower Threat Defense 7.0.2
Cisco Firepower Threat Defense 7.0.2.1
Cisco Firepower Threat Defense 7.0.3
Cisco Firepower Threat Defense 7.0.4
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
Cisco Firepower Threat Defense 7.2.0
Cisco Firepower Threat Defense 7.2.1
Cisco Firepower Threat Defense 7.2.2
Cisco Firepower Threat Defense 7.2.3
Cisco Firepower Threat Defense 7.3.1.1
Cisco Firepower Threat Defense 7.3.1
Cisco Firepower Threat Defense 7.3.0
Cisco Firepower Threat Defense 7.1.0.3
Cisco Firepower Threat Defense 7.0.5
4.3
CVSSv3
CVE-2020-3222
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, adjacent malicious user to bypass access control restrictions on an affected device. The vulnerability is due to the presence of a proxy service at a specific endpoin...
Cisco Ios Xe 16.10.1
Cisco Ios Xe 16.10.1a
Cisco Ios Xe 16.10.1b
Cisco Ios Xe 16.10.1c
Cisco Ios Xe 16.10.1d
Cisco Ios Xe 16.10.1e
Cisco Ios Xe 16.10.1f
Cisco Ios Xe 16.10.1g
Cisco Ios Xe 16.10.1s
Cisco Ios Xe 16.10.2
Cisco Ios Xe 16.11.1
Cisco Ios Xe 16.11.1a
Cisco Ios Xe 16.11.1b
Cisco Ios Xe 16.11.1c
Cisco Ios Xe 16.11.1s
Cisco Ios Xe 16.12.1
Cisco Ios Xe 16.12.1a
Cisco Ios Xe 16.12.1c
Cisco Ios Xe 16.12.1s
Cisco Ios Xe 16.12.1t
Cisco Ios Xe 16.12.1w
Cisco Ios Xe 16.12.1y
5.4
CVSSv3
CVE-2023-20031
A vulnerability in the SSL/TLS certificate handling of Snort 3 Detection Engine integration with Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause the Snort 3 detection engine to restart. This vulnerability is due to a lo...
Cisco Firepower Threat Defense 7.0.0
Cisco Firepower Threat Defense 6.7.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.0.1
Cisco Firepower Threat Defense 7.0.0.1
Cisco Firepower Threat Defense 7.0.1.1
Cisco Firepower Threat Defense 7.0.2
Cisco Firepower Threat Defense 7.0.2.1
Cisco Firepower Threat Defense 7.0.3
Cisco Firepower Threat Defense 7.0.4
Cisco Firepower Threat Defense 7.2.0
Cisco Firepower Threat Defense 6.7.0.1
Cisco Firepower Threat Defense 6.7.0.2
Cisco Firepower Threat Defense 6.7.0.3
Cisco Firepower Threat Defense 7.0.5
7.2
CVSSv3
CVE-2019-1862
A vulnerability in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote malicious user to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability occurs because the affected softwa...
Cisco Ios Xe 16.3.7
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »