Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tcp ip vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-2021-31249
A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components.
Chiyu-tech Bf-430 Firmware -
Chiyu-tech Bf-431 Firmware -
Chiyu-tech Bf-450m Firmware -
715
VMScore
CVE-2011-1965
Tcpip.sys in the TCP/IP stack in Microsoft Windows 7 Gold and SP1 and Windows Server 2008 R2 and R2 SP1 does not properly implement URL-based QoS, which allows remote malicious users to cause a denial of service (reboot) via a crafted URL to a web server, aka "TCP/IP QOS Den...
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
1 EDB exploit
694
VMScore
CVE-2010-1571
Directory traversal vulnerability in the bootstrap service in Cisco Unified Contact Center Express (UCCX) 7.0 prior to 7.0(1)SR4 and 7.0(2), unspecified 6.0 versions, and 5.0 prior to 5.0(2)SR3 allows remote malicious users to read arbitrary files via a crafted bootstrap message ...
Cisco Unified Contact Center Express 7.0
Cisco Unified Contact Center Express 6.0
Cisco Unified Contact Center Express 5.0
Cisco Customer Response Solution 6.0
Cisco Customer Response Solution 7.0
Cisco Customer Response Solution 5.0
Cisco Unified Ip Interactive Voice Response 5.0
Cisco Unified Ip Interactive Voice Response 6.0
Cisco Unified Ip Interactive Voice Response 7.0
694
VMScore
CVE-2013-5543
Cisco IOS XE 3.4 prior to 3.4.2S and 3.5 prior to 3.5.1S on 1000 ASR devices allows remote malicious users to cause a denial of service (device reload) via malformed ICMP error packets associated with a (1) TCP or (2) UDP session that is under inspection by the Zone-Based Firewal...
Cisco Ios Xe 3.4.0as
Cisco Ios Xe 3.4.0s
Cisco Ios Xe 3.4.1s
Cisco Asr 1006 -
Cisco Asr 1023 Router -
Cisco Asr 1002-x -
Cisco Asr 1004 -
Cisco Asr 1001 -
Cisco Asr 1002 -
694
VMScore
CVE-2013-5545
The PPTP ALG implementation in Cisco IOS XE 3.9 prior to 3.9.2S on 1000 ASR devices allows remote malicious users to cause a denial of service (device reload) by sending many PPTP packets over NAT, aka Bug ID CSCuh19936.
Cisco Ios Xe 3.9.0s
Cisco Ios Xe 3.9.1s
Cisco Asr 1002-x -
Cisco Asr 1002 -
Cisco Asr 1004 -
Cisco Asr 1006 -
Cisco Asr 1001 -
Cisco Asr 1023 Router -
694
VMScore
CVE-2013-5546
The TCP reassembly feature in Cisco IOS XE 3.7 prior to 3.7.3S and 3.8 prior to 3.8.1S on 1000 ASR devices allows remote malicious users to cause a denial of service (device reload) via large TCP packets that are processed by the (1) NAT or (2) ALG component, aka Bug ID CSCud7250...
Cisco Ios Xe 3.7.1s
Cisco Ios Xe 3.7.0s
Cisco Ios Xe 3.7.2s
Cisco Ios Xe 3.8.0s
Cisco Asr 1023 Router -
Cisco Asr 1001 -
Cisco Asr 1002 -
Cisco Asr 1006 -
Cisco Asr 1002-x -
Cisco Asr 1004 -
694
VMScore
CVE-2013-5547
Cisco IOS XE 3.9 prior to 3.9.2S on 1000 ASR devices allows remote malicious users to cause a denial of service (device reload) by sending malformed EoGRE packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCuf08269.
Cisco Ios Xe 3.9.0s
Cisco Ios Xe 3.9.1s
Cisco Asr 1002 -
Cisco Asr 1004 -
Cisco Asr 1006 -
Cisco Asr 1023 Router -
Cisco Asr 1001 -
Cisco Asr 1002-x -
668
VMScore
CVE-2006-0374
Advantage Century Telecommunication (ACT) P202S IP Phone 1.01.21 running firmware 1.1.21 has multiple undocumented ports available, which (1) might allow remote malicious users to obtain sensitive information, such as memory contents and internal operating-system data, by directl...
Advantage Century Telecommunication P202s 1.01.21 Firmware 1.1.21
383
VMScore
CVE-2020-8839
Stored XSS exists on CHIYU BF-430 232/485 TCP/IP Converter devices prior to 1.16.00, as demonstrated by the /if.cgi TF_submask field.
Chiyu-t Bf-430 Firmware
505
VMScore
CVE-2012-5344
Directory traversal vulnerability in the WebServer (Thttpd.bat) in IpTools (aka Tiny TCP/IP server) 0.1.4 allows remote malicious users to read arbitrary files via a .. (dot dot) in a HTTP request.
Kepler Lam Iptools 0.1.4
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »