Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco integrated management controller vulnerabilities and exploits
(subscribe to this query)
3.7
CVSSv3
CVE-2020-25686
A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pending request for the same name and forwards a new request. By default, a maximum of 150 pending queries can be sent to upstream servers, so there can be at most 150 ...
Thekelleys Dnsmasq
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 10.0
Arista Eos
2 Github repositories
1 Article
5.9
CVSSv3
CVE-2020-25687
A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow exists in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. This flaw allows a remote attacker, who can create valid DNS replies, to cause an overflow in a heap-allocated ...
Thekelleys Dnsmasq
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 Article
8.6
CVSSv3
CVE-2020-3560
A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could explo...
Cisco Wireless Lan Controller Software
Cisco Wireless Lan Controller
Cisco Business Access Points
Cisco Access Points
Cisco Aironet Access Point Software 8.5\\(154.27\\)
Cisco Aironet Access Point Software 8.8\\(125.0\\)
Cisco Aironet Access Point Software 8.10\\(105.0\\)
Cisco Aironet Access Point Software 8.10\\(105.4\\)
Cisco Aironet Access Point Software 17.1.2.6
Cisco Aironet Access Point Software 17.1.2.9
Cisco Aironet Access Point Software 17.2.0.37
7.5
CVSSv3
CVE-2021-1437
A vulnerability in the FlexConnect Upgrade feature of Cisco Aironet Series Access Points Software could allow an unauthenticated, remote malicious user to obtain confidential information from an affected device. This vulnerability is due to an unrestricted Trivial File Transfer P...
Cisco Aironet Access Point Software -
Cisco Catalyst 9800 Firmware
Cisco Wireless Lan Controller Software
NA
CVE-2013-1186
Cisco Unified Computing System (UCS) 1.x prior to 1.4(4) and 2.x prior to 2.0(2m) allows remote malicious users to bypass KVM authentication via a crafted authentication request to a Cisco Integrated Management Controller (IMC), aka Bug ID CSCts53746.
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.1\\(1m\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.2
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.2\\(1\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4\\(1j\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3\\(1y\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3\\(1w\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3\\(1t\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.2\\(1d\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3\\(1o\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3\\(1p\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3\\(1m\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3\\(1n\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4\\(3q\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4\\(3m\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 2.0\\(1q\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 2.0\\(1s\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.0\\(2k\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.1
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4\\(3l\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4\\(1m\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3\\(1q\\)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4\\(3u\\)
NA
CVE-2015-0633
The Integrated Management Controller (IMC) in Cisco Unified Computing System (UCS) 1.4(7h) and previous versions on C-Series servers allows remote malicious users to bypass intended access restrictions by sending crafted DHCP response packets on the local network, aka Bug ID CSCu...
Cisco Unified Computing System 1.4\\(3j\\)
Cisco Unified Computing System 1.4\\(3k\\)
Cisco Unified Computing System 1.4\\(5e\\)
Cisco Unified Computing System 1.4\\(5g\\)
Cisco Unified Computing System 1.4\\(5g\\)2
Cisco Unified Computing System 1.4\\(7h\\)
Cisco Unified Computing System 1.4\\(1c\\)
Cisco Unified Computing System 1.4\\(2\\)
Cisco Unified Computing System 1.4\\(3s\\)
Cisco Unified Computing System 1.4\\(4a\\)
Cisco Unified Computing System 1.4\\(6c\\)
Cisco Unified Computing System 1.4\\(6d\\)
Cisco Unified Computing System 1.4
Cisco Unified Computing System 1.4\\(3p\\)
Cisco Unified Computing System 1.4\\(3p\\)5
Cisco Unified Computing System 1.4\\(5h\\)
Cisco Unified Computing System 1.4\\(5j\\)
Cisco Unified Computing System 1.4\\(3c\\)2
Cisco Unified Computing System 1.4\\(3c\\)1
Cisco Unified Computing System 1.4\\(4a\\)1
Cisco Unified Computing System 1.4\\(5b\\)1
Cisco Unified Computing System 1.4\\(7b\\)1
10
CVSSv3
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1165 Github repositories
28 Articles
7.4
CVSSv3
CVE-2021-1439
A vulnerability in the multicast DNS (mDNS) gateway feature of Cisco Aironet Series Access Points Software could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input v...
Cisco Aironet Access Point Software -
Cisco Catalyst 9800 Firmware
6.5
CVSSv3
CVE-2019-5108
An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to send IAPP location updates for stations before the required authentication process has completed. This could lead to d...
Linux Linux Kernel
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Data Availability Services -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp E-series Santricity Os Controller
Netapp A700s Firmware -
Netapp H610s Firmware -
Netapp 8300 Firmware -
Netapp 8700 Firmware -
Netapp A400 Firmware -
Oracle Sd-wan Edge 8.2
8.1
CVSSv3
CVE-2019-1863
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to make unauthorized changes to the system configuration. The vulnerability is due to insufficient authorization enfo...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »