Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-20319
A vulnerability in the UDP forwarding code of Cisco IOS XR Software could allow an unauthenticated, adjacent malicious user to bypass configured management plane protection policies and access the Simple Network Management Plane (SNMP) server of an affected device. This vulnerabi...
NA
CVE-2024-20335
A vulnerability in the web-based management interface of Cisco Small Business 100, 300, and 500 Series Wireless APs could allow an authenticated, remote malicious user to perform command injection attacks against an affected device. In order to exploit this vulnerability, the att...
NA
CVE-2024-20336
A vulnerability in the web-based user interface of Cisco Small Business 100, 300, and 500 Series Wireless APs could allow an authenticated, remote malicious user to perform buffer overflow attacks against an affected device. In order to exploit this vulnerability, the attacker mu...
NA
CVE-2024-20337
A vulnerability in the SAML authentication process of Cisco Secure Client could allow an unauthenticated, remote malicious user to conduct a carriage return line feed (CRLF) injection attack against a user. This vulnerability is due to insufficient validation of user-supplied inp...
1 Github repository
1 Article
NA
CVE-2024-20338
A vulnerability in the ISE Posture (System Scan) module of Cisco Secure Client for Linux could allow an authenticated, local malicious user to elevate privileges on an affected device. This vulnerability is due to the use of an uncontrolled search path element. An attacker could ...
NA
CVE-2024-20345
A vulnerability in the file upload functionality of Cisco AppDynamics Controller could allow an authenticated, remote malicious user to conduct directory traversal attacks on an affected device. This vulnerability is due to insufficient validation of user-supplied input. An attac...
2 Articles
NA
CVE-2024-20346
A vulnerability in the web-based management interface of Cisco AppDynamics Controller could allow an authenticated, remote malicious user to perform a reflected cross-site scripting (XSS) attack against a user of the interface of an affected device. This vulnerability is due to i...
NA
CVE-2024-20292
A vulnerability in the logging component of Cisco Duo Authentication for Windows Logon and RDP could allow an authenticated, local malicious user to view sensitive information in clear text on an affected system. This vulnerability is due to improper storage of an unencrypted reg...
NA
CVE-2024-20301
A vulnerability in Cisco Duo Authentication for Windows Logon and RDP could allow an authenticated, physical malicious user to bypass secondary authentication and access an affected Windows device. This vulnerability is due to a failure to invalidate locally created trusted sessi...
8.6
CVSSv3
CVE-2024-20267
A vulnerability with the handling of MPLS traffic for Cisco NX-OS Software could allow an unauthenticated, remote malicious user to cause the netstack process to unexpectedly restart, which could cause the device to stop processing network traffic or to reload. This vulnerability...
Cisco Nx-os 6.0\\(2\\)u5\\(1\\)
Cisco Nx-os 6.0\\(2\\)u6\\(7\\)
Cisco Nx-os 6.2\\(2a\\)
Cisco Nx-os 7.1\\(1\\)n1\\(1\\)
Cisco Nx-os 7.3\\(0\\)n1\\(1\\)
Cisco Nx-os 6.0\\(2\\)a6\\(6\\)
Cisco Nx-os 6.2\\(12\\)
Cisco Nx-os 6.0\\(2\\)a6\\(2\\)
Cisco Nx-os 7.1\\(0\\)n1\\(1b\\)
Cisco Nx-os 6.2\\(6b\\)
Cisco Nx-os 7.1\\(3\\)n1\\(1\\)
Cisco Nx-os 6.0\\(2\\)u3\\(2\\)
Cisco Nx-os 6.0\\(2\\)u2\\(1\\)
Cisco Nx-os 6.0\\(2\\)u6\\(1\\)
Cisco Nx-os 6.0\\(2\\)u2\\(2\\)
Cisco Nx-os 6.0\\(2\\)u3\\(1\\)
Cisco Nx-os 6.0\\(2\\)a6\\(7\\)
Cisco Nx-os 7.1\\(2\\)n1\\(1\\)
Cisco Nx-os 6.0\\(2\\)u5\\(3\\)
Cisco Nx-os 7.2\\(1\\)d1\\(1\\)
Cisco Nx-os 6.0\\(2\\)a7\\(2\\)
Cisco Nx-os 6.0\\(2\\)u2\\(4\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »