Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web gateway vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-9474
The S. Siedle & Soehne SG 150-0 Smart Gateway prior to 1.2.4 allows remote code execution via the backup functionality in the web frontend. By using an exploit chain, an attacker with access to the network can get root access on the gateway.
Siedle Sg 150-0 Firmware
8.8
CVSSv3
CVE-2019-6528
PSI GridConnect GmbH Telecontrol Gateway and Smart Telecontrol Unit family, IEC104 Security Proxy versions Telecontrol Gateway 3G Versions 4.2.21, 5.0.27, 5.1.19, 6.0.16 and prior, and Telecontrol Gateway XS-MU Versions 4.2.21, 5.0.27, 5.1.19, 6.0.16 and prior, and Telecontrol Ga...
Psigridconnect Telecontrol Gateway Xs-mu Firmware
Psigridconnect Telecontrol Gateway Vm Firmware
Psigridconnect Telecontrol Gateway 3g Firmware
Psigridconnect Smart Telecontrol Unit Tcg Firmware
Psigridconnect Iec104 Security Proxy Firmware
8.8
CVSSv3
CVE-2017-7906
In ABB IP GATEWAY 3.39 and prior, the web server does not sufficiently verify that a request was performed by the authenticated user, which may allow an malicious user to launch a request impersonating that user.
Abb Ip Gateway Firmware
8.8
CVSSv3
CVE-2017-8007
In EMC ViPR SRM, Storage M&R, VNX M&R, and M&R (Watch4Net) for SAS Solution Packs, the Webservice Gateway is affected by a directory traversal vulnerability. Attackers with knowledge of Webservice Gateway credentials could potentially exploit this vulnerability to acc...
Dell Emc M\\&r
Dell Emc Storage Monitoring And Reporting
Dell Emc Vipr Srm
Dell Emc Vnx Monitoring And Reporting
8.8
CVSSv3
CVE-2017-6328
The Symantec Messaging Gateway prior to 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious exploit of a website where unauthorized commands are transmitted from a user t...
Symantec Message Gateway
1 EDB exploit
8.8
CVSSv3
CVE-2015-7849
Use-after-free vulnerability in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
8.8
CVSSv3
CVE-2015-7854
Buffer overflow in the password management functionality in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
8.8
CVSSv3
CVE-2016-5313
Symantec Web Gateway (SWG) prior to 5.2.5 allows remote authenticated users to execute arbitrary OS commands.
Symantec Web Gateway
8.8
CVSSv3
CVE-2016-2332
flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware prior to 01A.8 allows remote authenticated users to execute arbitrary commands via the 5066 (aka dnsmasq) parameter.
Systech Syslink Sl-1000 Modular Gateway Firmware -
8.4
CVSSv3
CVE-2016-3646
The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x up to and including 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) prior to 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac;...
Symantec Norton Security
Symantec Protection Engine
Symantec Protection Engine 7.8.0
Symantec Advanced Threat Protection
Symantec Norton Bootable Removal Tool
Symantec Data Center Security Server 6.6
Symantec Data Center Security Server 6.0
Symantec Data Center Security Server 6.5
Symantec Protection For Sharepoint Servers
Symantec Message Gateway For Service Providers 10.6
Symantec Message Gateway For Service Providers 10.5
Symantec Csapi
Symantec Endpoint Protection 12.1.6
Symantec Norton Power Eraser
Symantec Mail Security For Domino
Symantec Mail Security For Microsoft Exchange
Symantec Mail Security For Microsoft Exchange 6.5.8
Symantec Message Gateway
Symantec Norton Security
Symantec Norton Security With Backup
Symantec Norton Antivirus
Symantec Norton 360
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »