Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web gateway vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-47767
A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super administration privileges to the attacker. This affects all Solar-Log devices that use firmware version v4.2.7 up to v5.1.1 (included).
Solar-log Solar-log 250 Firmware
Solar-log Solar-log 300 Firmware
Solar-log Solar-log 500 Firmware
Solar-log Solar-log 800e Firmware
Solar-log Solar-log 1000 Firmware
Solar-log Solar-log 1000 Pm+ Firmware
Solar-log Solar-log 1200 Firmware
Solar-log Solar-log 2000 Firmware
Solar-log Solar-log 50 Firmware
NA
CVE-2020-22662
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gateway 200 (SCG200) prior to 3.6.2.0.795, SmartZone 100 (SZ-100) prior to 3.6.2.0.795, SmartZone 300 (SZ300)...
Ruckuswireless R310 Firmware 10.5.1.0.199
Ruckuswireless R500 Firmware 10.5.1.0.199
Ruckuswireless R600 Firmware 10.5.1.0.199
Ruckuswireless T300 Firmware 10.5.1.0.199
Ruckuswireless T301n Firmware 10.5.1.0.199
Ruckuswireless T301s Firmware 10.5.1.0.199
Ruckuswireless Scg200 Firmware
Ruckuswireless Sz-100 Firmware
Ruckuswireless Sz-300 Firmware
Ruckuswireless Vsz Firmware
Ruckuswireless Zonedirector 1100 Firmware 9.10.2.0.130
Ruckuswireless Zonedirector 1200 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 3000 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 5000 Firmware 10.0.1.0.151
NA
CVE-2020-22657
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gateway 200 (SCG200) prior to 3.6.2.0.795, SmartZone 100 (SZ-100) prior to 3.6.2.0.795, SmartZone 300 (SZ300)...
Ruckuswireless R310 Firmware 10.5.1.0.199
Ruckuswireless R500 Firmware 10.5.1.0.199
Ruckuswireless R600 Firmware 10.5.1.0.199
Ruckuswireless T300 Firmware 10.5.1.0.199
Ruckuswireless T301n Firmware 10.5.1.0.199
Ruckuswireless T301s Firmware 10.5.1.0.199
Ruckuswireless Scg200 Firmware
Ruckuswireless Sz-100 Firmware
Ruckuswireless Sz-300 Firmware
Ruckuswireless Vsz Firmware
Ruckuswireless Zonedirector 1100 Firmware 9.10.2.0.130
Ruckuswireless Zonedirector 1200 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 3000 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 5000 Firmware 10.0.1.0.151
NA
CVE-2023-0214
A cross-site scripting vulnerability in Skyhigh SWG in main releases 11.x before 11.2.6, 10.x before 10.2.17, and controlled release 12.x before 12.0.1 allows a remote malicious user to craft SWG-specific internal requests with URL paths to any third-party website, causing arbitr...
Trellix Skyhigh Secure Web Gateway 12.0.0
Trellix Skyhigh Secure Web Gateway
NA
CVE-2022-23854
AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.
Aveva Intouch Access Anywhere 2020
Aveva Intouch Access Anywhere
1 EDB exploit
NA
CVE-2022-35507
A response-header CRLF injection vulnerability in the Proxmox Virtual Environment (PVE) and Proxmox Mail Gateway (PMG) web interface allows a remote malicious user to set cookies for a victim's browser that are longer than the server expects, causing a client-side DoS. This ...
Proxmox Proxmox Mail Gateway -
Proxmox Pve Http Server
Proxmox Virtual Environment -
NA
CVE-2022-20922
Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote malicious user to bypass the configured policies or cause a denial of service (DoS) condition on an affe...
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
Cisco Firepower Threat Defense 7.2.0
Cisco Umbrella Insights Virtual Appliance 1.5.5
Cisco Umbrella Insights Virtual Appliance 1.5.6
Cisco Umbrella Insights Virtual Appliance 2.0.0
Cisco Umbrella Insights Virtual Appliance 2.0.2
Cisco Umbrella Insights Virtual Appliance 2.0.3
Cisco Umbrella Insights Virtual Appliance 2.1.0
Cisco Umbrella Insights Virtual Appliance 2.1.2
Cisco Umbrella Insights Virtual Appliance 2.1.5
Cisco Umbrella Insights Virtual Appliance 2.1.4
Cisco Umbrella Insights Virtual Appliance 2.4.12
Cisco Umbrella Insights Virtual Appliance 2.4.6
Cisco Umbrella Insights Virtual Appliance 2.4
Cisco Umbrella Insights Virtual Appliance 2.4.4
Cisco Umbrella Insights Virtual Appliance 2.5
Cisco Umbrella Insights Virtual Appliance 2.5.4
Cisco Umbrella Insights Virtual Appliance 2.5.5
Cisco Umbrella Insights Virtual Appliance 2.5.6
NA
CVE-2022-20943
Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote malicious user to bypass the configured policies or cause a denial of service (DoS) condition on an affe...
Cisco Firepower Threat Defense 7.0.0
Cisco Firepower Threat Defense 7.0.1
Cisco Firepower Threat Defense 7.0.0.1
Cisco Firepower Threat Defense 7.0.1.1
Cisco Cyber Vision 4.0.2
Cisco Cyber Vision 3.0.0
Cisco Cyber Vision 3.0.1
Cisco Cyber Vision 3.0.2
Cisco Cyber Vision 3.0.3
Cisco Cyber Vision 3.0.5
Cisco Cyber Vision 3.0.6
Cisco Cyber Vision 3.1.0
Cisco Cyber Vision 3.1.2
Cisco Cyber Vision 3.1.1
Cisco Cyber Vision 3.2.3
Cisco Cyber Vision 3.2.1
Cisco Cyber Vision 3.2.4
Cisco Cyber Vision 3.2.0
Cisco Cyber Vision 3.2.2
Cisco Cyber Vision 4.0.0
Cisco Cyber Vision 4.0.1
Cisco Cyber Vision 4.0.3
NA
CVE-2022-3320
It was possible to bypass policies configured for Zero Trust Secure Web Gateway by using warp-cli 'set-custom-endpoint' subcommand. Using this command with an unreachable endpoint caused the WARP Client to disconnect and allowed bypassing administrative restrictions on ...
Cloudflare Warp
NA
CVE-2022-41983
On specific hardware platforms, on BIG-IP versions 16.1.x prior to 16.1.3.1, 15.1.x prior to 15.1.7, 14.1.x prior to 14.1.5.1, and all versions of 13.1.x, while Intel QAT (QuickAssist Technology) and the AES-GCM/CCM cipher is in use, undisclosed conditions can cause BIG-IP to sen...
F5 Big-ip Analytics
F5 Big-ip Link Controller
F5 Big-ip Local Traffic Manager
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Global Traffic Manager
F5 Big-ip Fraud Protection Service
F5 Big-ip Domain Name System
F5 Big-ip Application Security Manager
F5 Big-ip Application Acceleration Manager
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Access Policy Manager
F5 Big-ip Advanced Web Application Firewall
F5 Big-ip Websafe
F5 Big-ip Webaccelerator
F5 Big-ip Ssl Orchestrator
F5 Big-ip Edge Gateway
F5 Big-ip Ddos Hybrid Defender
F5 Big-ip Carrier-grade Nat
F5 Big-ip Application Visibility And Reporting
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »