Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security access point vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2017-12274
A vulnerability in Extensible Authentication Protocol (EAP) ingress frame processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow an unauthenticated, Layer 2 radio frequency (RF) adjacent malicious user to cause the Access Point (AP) to reload, resu...
Cisco Aironet 1562 Firmware -
Cisco Aironet 2800 Firmware -
Cisco Aironet 3800 Firmware -
7.8
CVSSv3
CVE-2021-30360
Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted EXE in the repair folder which runs with the Check Point Remote A...
Checkpoint Endpoint Security
7.8
CVSSv3
CVE-2021-1419
A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges. The vulnerability is due to improper checking on file operations wi...
Cisco Aironet 1542d Firmware -
Cisco Aironet 1562d Firmware -
Cisco Aironet 1815m Firmware -
Cisco Aironet 1830e Firmware -
Cisco Aironet 1840i Firmware -
Cisco Aironet 1850e Firmware -
Cisco Aironet 2800i Firmware -
Cisco Aironet 3800p Firmware -
Cisco Aironet 4800 Firmware -
Cisco Catalyst 9105axi Firmware -
Cisco Catalyst 9115axe Firmware -
Cisco Catalyst 9117 Firmware -
Cisco Catalyst 9120axi Firmware -
Cisco Catalyst 9124axd Firmware -
Cisco Catalyst 9130axe Firmware -
Cisco Catalyst Iw6300 Ac Firmware -
Cisco Esw6300 Firmware -
Cisco 1100-8p Firmware -
Cisco 1120 Firmware -
Cisco 1160 Firmware -
Cisco Wireless Lan Controller Software
Cisco Catalyst 9800 Firmware
NA
CVE-2014-2118
Multiple cross-site scripting (XSS) vulnerabilities in dashboard-related HTML documents in Cisco Prime Security Manager (aka PRSM) 9.2(.1-2) and previous versions allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCun50687...
Cisco Prime Security Manager 9.1.2-42
Cisco Prime Security Manager 9.1.2-29
Cisco Prime Security Manager 9.1
Cisco Prime Security Manager 9.2
Cisco Prime Security Manager
Cisco Prime Security Manager 9.2.1-1
Cisco Prime Security Manager 9.1.3-10
Cisco Prime Security Manager 9.1.3-13
Cisco Prime Security Manager 9.1.3-8
Cisco Prime Security Manager 9.0
7.8
CVSSv3
CVE-2019-8452
A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with li...
Checkpoint Endpoint Security
Checkpoint Zonealarm
1 EDB exploit
5.3
CVSSv3
CVE-2018-17189
In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.
Apache Http Server 2.4.20
Apache Http Server 2.4.23
Apache Http Server 2.4.25
Apache Http Server 2.4.26
Apache Http Server 2.4.18
Apache Http Server 2.4.17
Apache Http Server 2.4.27
Apache Http Server 2.4.29
Apache Http Server 2.4.28
Apache Http Server 2.4.33
Apache Http Server 2.4.37
Apache Http Server 2.4.30
Apache Http Server 2.4.34
Apache Http Server 2.4.35
Netapp Santricity Cloud Connector -
Netapp Storage Automation Store -
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Debian Debian Linux 9.0
Oracle Retail Xstore Point Of Service 7.1
Oracle Retail Xstore Point Of Service 7.0
Oracle Hospitality Guest Access 4.2.0
2 Github repositories
7.8
CVSSv3
CVE-2020-6021
Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory from which the installation repair takes place. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a ...
Checkpoint Endpoint Security
NA
CVE-2014-3364
Multiple cross-site scripting (XSS) vulnerabilities in the web framework in Cisco Prime Security Manager (aka PRSM) 9.2.1-2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via a (1) Access Policies or (2) Device Summary Dashboard paramete...
Cisco Prime Security Manager
NA
CVE-2014-1672
Check Point R75.47 Security Gateway and Management Server does not properly enforce Anti-Spoofing when the routing table is modified and the "Get - Interfaces with Topology" action is performed, which allows malicious users to bypass intended access restrictions.
Checkpoint Security Gateway R75.47
Checkpoint Management Server R75.47
6.8
CVSSv3
CVE-2018-0381
A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an authenticated, adjacent malicious user to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a deadlock condition th...
Cisco Aironet Access Points 8.2\\(166.0\\)
Cisco Aironet Access Points 8.2\\(167.3\\)
Cisco Aironet Access Points 8.3\\(133.0\\)
Cisco Aironet Access Points 8.3\\(141.10\\)
Cisco Aironet Access Points 8.5\\(120.0\\)
Cisco Aironet Access Points 8.7\\(1.96\\)
Cisco Aironet Access Points 8.7\\(1.99\\)
Cisco Aironet Access Points 8.7\\(1.107\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »