Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
acl vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-20293
A vulnerability in the activation of an access control list (ACL) on Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to bypass the protection that is offered by a configured A...
320
VMScore
CVE-2019-4236
A IBM Spectrum Protect 7.l client backup or archive operation running for an HP-UX VxFS object is silently skipping Access Control List (ACL) entries from backup or archive if there are more than twelve ACL entries associated with the object in total. As a result, it could allow ...
Ibm Spectrum Protect
294
VMScore
CVE-2021-1957
Improper Access Control when ACL link encryption is failed and ACL link is not disconnected during reconnection with paired device in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
Qualcomm Apq8017 Firmware -
Qualcomm Qca6174a Firmware -
Qualcomm Qca6390 Firmware -
Qualcomm Qca6391 Firmware -
Qualcomm Qca6421 Firmware -
Qualcomm Qca6426 Firmware -
Qualcomm Qca6431 Firmware -
Qualcomm Qca6436 Firmware -
Qualcomm Qca6574au Firmware -
Qualcomm Qca6696 Firmware -
Qualcomm Qcm6125 Firmware -
Qualcomm Qcs610 Firmware -
Qualcomm Qcs6125 Firmware -
Qualcomm Qrb5165 Firmware -
Qualcomm Qualcomm215 Firmware -
Qualcomm Sa6145p Firmware -
Qualcomm Sa6150p Firmware -
Qualcomm Sa6155p Firmware -
Qualcomm Sa8145p Firmware -
Qualcomm Sa8150p Firmware -
Qualcomm Sa8155p Firmware -
Qualcomm Sa8195p Firmware -
534
VMScore
CVE-2012-4450
389 Directory Server 1.2.10 does not properly update the ACL when a DN entry is moved by a modrdn operation, which allows remote authenticated users with certain permissions to bypass ACL restrictions and access the DN entry.
Fedoraproject 389 Directory Server 1.2.10
312
VMScore
CVE-2014-0875
Active Cloud Engine (ACE) in IBM Storwize V7000 Unified 1.3.0.0 up to and including 1.4.3.x allows remote malicious users to bypass intended ACL restrictions in opportunistic circumstances by leveraging incorrect ACL synchronization over an unreliable NFS connection that requires...
Ibm Storwize Unified V7000 Software 1.3.0.0
Ibm Storwize Unified V7000 Software 1.4.0.5
Ibm Storwize Unified V7000 Software 1.4.1.0
Ibm Storwize Unified V7000 Software 1.4.0.1
Ibm Storwize Unified V7000 Software 1.4.0.2
Ibm Storwize Unified V7000 Software 1.4.3.0
Ibm Storwize Unified V7000 Software 1.4.3.1
Ibm Storwize Unified V7000 Software 1.3.1.0
Ibm Storwize Unified V7000 Software 1.4.0.0
Ibm Storwize Unified V7000 Software 1.4.1.1
Ibm Storwize Unified V7000 Software 1.4.2.0
Ibm Storwize Unified V7000 Software 1.4.2.1
Ibm Storwize Unified V7000 Software 1.4.0.3
Ibm Storwize Unified V7000 Software 1.4.0.4
Ibm Storwize Unified V7000 Software 1.4.3.2
Ibm Storwize Unified V7000 -
445
VMScore
CVE-2017-6620
A vulnerability in the remote management access control list (ACL) feature of the Cisco CVR100W Wireless-N VPN Router could allow an unauthenticated, remote malicious user to bypass the remote management ACL. The vulnerability is due to incorrect implementation of the ACL decisio...
Cisco Small Business Rv Series Router Firmware 1.0.1.19
445
VMScore
CVE-2018-20145
Eclipse Mosquitto 1.5.x prior to 1.5.5 allows ACL bypass: if the option per_listener_settings was set to true, and the default listener was in use, and the default listener specified an acl_file, then the acl file was being ignored.
Eclipse Mosquitto
383
VMScore
CVE-2021-26038
An issue exists in Joomla! 2.5.0 up to and including 3.9.27. Install action in com_installer lack the required hardcoded ACL checks for superusers. A default system is not affected cause the default ACL for com_installer is limited to super users already.
Joomla Joomla\\!
801
VMScore
CVE-2007-0968
Unspecified vulnerability in Cisco Firewall Services Module (FWSM) prior to 2.3(4.7) and 3.x prior to 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.
Cisco Firewall Services Module 2.3
Cisco Firewall Services Module 3.1
578
VMScore
CVE-2015-2172
DokuWiki prior to 2014-05-05d and prior to 2014-09-29c does not properly check permissions for the ACL plugins, which allows remote authenticated users to gain privileges and add or delete ACL rules via a request to the XMLRPC API.
Dokuwiki Dokuwiki
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »