Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
an vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2020-3416
Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 (RSP3) installed could allow an authenticated, local attacker with high privilege...
Cisco Ios Xe 16.12.1
Cisco Ios Xe 17.2
6.7
CVSSv3
CVE-2020-3513
Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 (RSP3) installed could allow an authenticated, local attacker with high privilege...
Cisco Ios Xe 16.12.1
Cisco Ios Xe 17.2
4.3
CVSSv3
CVE-2019-1587
A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, remote malicious user to access sensitive information. The vulnerability occurs because the affected software does not properly validate user-...
Cisco Nx-os 8.3\\(0\\)sk\\(0.39\\)
7.5
CVSSv3
CVE-2018-15443
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote malicious user to bypass a configured Intrusion Prevention System (IPS) rule that inspects certain types of TCP traffic. The vulnerability is due to incorrect TCP ret...
Cisco Firepower System Software -
9.8
CVSSv3
CVE-2023-50164
An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. Users are recommended to upgrade to versions Struts 2.5.33 or Struts 6.3.0.2 or gre...
Apache Struts
13 Github repositories
2 Articles
5.8
CVSSv3
CVE-2020-3285
A vulnerability in the Transport Layer Security version 1.3 (TLS 1.3) policy with URL category functionality for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to bypass a configured TLS 1.3 policy to block traffic for a specif...
Cisco Firepower Threat Defense
1 Article
5.9
CVSSv3
CVE-2019-1948
A vulnerability in Cisco Webex Meetings Mobile (iOS) could allow an unauthenticated, remote malicious user to gain unauthorized read access to sensitive data by using an invalid Secure Sockets Layer (SSL) certificate. The vulnerability is due to insufficient SSL certificate valid...
Cisco Webex Meetings
NA
CVE-2013-1111
The Cisco ATA 187 Analog Telephone Adaptor with firmware 9.2.1.0 and 9.2.3.1 before ES build 4 does not properly implement access control, which allows remote malicious users to execute operating-system commands via vectors involving a session on TCP port 7870, aka Bug ID CSCtz67...
Cisco Ata 187 Analog Telephone Adaptor Firmware 9.2.1.0
Cisco Ata 187 Analog Telephone Adaptor Firmware 9.2.3.1
Cisco Ata 187 Analog Telephone Adaptor -
8.6
CVSSv3
CVE-2021-34749
A vulnerability in Server Name Identification (SNI) request filtering of Cisco Web Security Appliance (WSA), Cisco Firepower Threat Defense (FTD), and the Snort detection engine could allow an unauthenticated, remote malicious user to bypass filtering technology on an affected de...
Cisco Firepower Management Center Virtual Appliance Firmware 6.6.0
Cisco Firepower Management Center 2.9.18
Cisco Firepower Management Center Virtual Appliance Firmware 6.7.0
Cisco Firepower Management Center Virtual Appliance Firmware 7.0.0
Cisco Firepower Management Center Virtual Appliance Firmware 7.1.0
Cisco Ironport Web Security Appliance 14.5
5.6
CVSSv3
CVE-2018-0087
A vulnerability in the FTP server of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to log in to the FTP server of the device without a valid password. The attacker does need to have a valid username. The vulnerability is due to incor...
Cisco Asyncos 10.5.1-296
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »