Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web security appliance vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-0738
Cross-site scripting (XSS) vulnerability in the Web Tracking Report page on Cisco Web Security Appliance (WSA) devices 8.5.0-497 allows remote malicious users to inject arbitrary web script or HTML via an unspecified field, aka Bug ID CSCuu16008.
Cisco Web Security Appliance 8.5.0-497
4
CVSSv2
CVE-2017-6338
Multiple Access Control issues in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 allow an authenticated, remote user with low privileges like 'Reports Only' or 'Auditor' to change FTP Access Control Settings, create or modify r...
Trendmicro Interscan Web Security Virtual Appliance
1 EDB exploit
4
CVSSv2
CVE-2016-9314
Sensitive Information Disclosure in com.trend.iwss.gui.servlet.ConfigBackup in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) version 6.5-SP2_Build_Linux_1707 and previous versions allows authenticated, remote users with least privileges to backup the system configu...
Trendmicro Interscan Web Security Virtual Appliance
1 EDB exploit
8
CVSSv2
CVE-2014-3053
The Local Management Interface (LMI) in IBM Security Access Manager (ISAM) for Mobile 8.0 with firmware 8.0.0.0 up to and including 8.0.0.3 and IBM Security Access Manager for Web 7.0, and 8.0 with firmware 8.0.0.2 and 8.0.0.3, allows remote malicious users to bypass authenticati...
Ibm Security Access Manager For Web 8.0 Firmware 8.0.0.2
Ibm Security Access Manager For Web 8.0 Firmware 8.0.0.3
Ibm Security Access Manager For Web Appliance 8.0
Ibm Security Access Manager For Web Appliance 7.0
Ibm Security Access Manager For Web Software 8.0
Ibm Security Access Manager For Mobile Appliance 8.0
Ibm Security Access Manager For Web Appliance 8.0
Ibm Security Access Manager For Web Software 7.0
Ibm Security Access Manager For Mobile Software 8.0
4.3
CVSSv2
CVE-2015-0732
Cross-site scripting (XSS) vulnerability in Cisco AsyncOS on the Web Security Appliance (WSA) 9.0.0-193; Email Security Appliance (ESA) 8.5.6-113, 9.1.0-032, 9.1.1-000, and 9.6.0-000; and Content Security Management Appliance (SMA) 9.1.0-033 allows remote malicious users to injec...
Cisco Web Security Appliance 9.0.0-193
Cisco Content Security Management Virtual Appliance 9.1.0-033
Cisco Email Security Appliance Firmware 8.5.6-113
Cisco Email Security Appliance Firmware 9.6.0-000
Cisco Email Security Appliance Firmware 9.1.0-032
Cisco Email Security Appliance Firmware 9.1.1-000
5
CVSSv2
CVE-2020-8604
A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow remote malicious users to disclose sensitive informatoin on affected installations.
Trendmicro Interscan Web Security Virtual Appliance 6.5
6.5
CVSSv2
CVE-2020-8605
A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow remote malicious users to execute arbitrary code on affected installations. Authentication is required to exploit this vulnerability.
Trendmicro Interscan Web Security Virtual Appliance 6.5
7.5
CVSSv2
CVE-2020-8606
A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow remote malicious users to bypass authentication on affected installations of Trend Micro InterScan Web Security Virtual Appliance.
Trendmicro Interscan Web Security Virtual Appliance 6.5
4.3
CVSSv2
CVE-2020-8603
A cross-site scripting vulnerability (XSS) in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow a remote malicious user to tamper with the web interface of affected installations. User interaction is required to exploit this vulnerability in that the target must ...
Trendmicro Interscan Web Security Virtual Appliance 6.5
3.5
CVSSv2
CVE-2021-31521
Trend Micro InterScan Web Security Virtual Appliance version 6.5 was found to have a reflected cross-site scripting (XSS) vulnerability in the product's Captive Portal.
Trendmicro Interscan Web Security Virtual Appliance 6.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »