Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-20327
A vulnerability in the PPP over Ethernet (PPPoE) termination feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent malicious user to crash the ppp_ma process, resulting in a denial of service (DoS) conditi...
NA
CVE-2024-20335
A vulnerability in the web-based management interface of Cisco Small Business 100, 300, and 500 Series Wireless APs could allow an authenticated, remote malicious user to perform command injection attacks against an affected device. In order to exploit this vulnerability, the att...
NA
CVE-2024-20336
A vulnerability in the web-based user interface of Cisco Small Business 100, 300, and 500 Series Wireless APs could allow an authenticated, remote malicious user to perform buffer overflow attacks against an affected device. In order to exploit this vulnerability, the attacker mu...
NA
CVE-2024-20337
A vulnerability in the SAML authentication process of Cisco Secure Client could allow an unauthenticated, remote malicious user to conduct a carriage return line feed (CRLF) injection attack against a user. This vulnerability is due to insufficient validation of user-supplied inp...
1 Github repository
1 Article
NA
CVE-2024-20338
A vulnerability in the ISE Posture (System Scan) module of Cisco Secure Client for Linux could allow an authenticated, local malicious user to elevate privileges on an affected device. This vulnerability is due to the use of an uncontrolled search path element. An attacker could ...
NA
CVE-2024-20345
A vulnerability in the file upload functionality of Cisco AppDynamics Controller could allow an authenticated, remote malicious user to conduct directory traversal attacks on an affected device. This vulnerability is due to insufficient validation of user-supplied input. An attac...
2 Articles
NA
CVE-2024-20346
A vulnerability in the web-based management interface of Cisco AppDynamics Controller could allow an authenticated, remote malicious user to perform a reflected cross-site scripting (XSS) attack against a user of the interface of an affected device. This vulnerability is due to i...
NA
CVE-2024-20292
A vulnerability in the logging component of Cisco Duo Authentication for Windows Logon and RDP could allow an authenticated, local malicious user to view sensitive information in clear text on an affected system. This vulnerability is due to improper storage of an unencrypted reg...
NA
CVE-2024-20301
A vulnerability in Cisco Duo Authentication for Windows Logon and RDP could allow an authenticated, physical malicious user to bypass secondary authentication and access an affected Windows device. This vulnerability is due to a failure to invalidate locally created trusted sessi...
8.6
CVSSv3
CVE-2024-20267
A vulnerability with the handling of MPLS traffic for Cisco NX-OS Software could allow an unauthenticated, remote malicious user to cause the netstack process to unexpectedly restart, which could cause the device to stop processing network traffic or to reload. This vulnerability...
Cisco Nx-os 6.0\\(2\\)u5\\(1\\)
Cisco Nx-os 6.0\\(2\\)u6\\(7\\)
Cisco Nx-os 6.2\\(2a\\)
Cisco Nx-os 7.1\\(1\\)n1\\(1\\)
Cisco Nx-os 7.3\\(0\\)n1\\(1\\)
Cisco Nx-os 6.0\\(2\\)a6\\(6\\)
Cisco Nx-os 6.2\\(12\\)
Cisco Nx-os 6.0\\(2\\)a6\\(2\\)
Cisco Nx-os 7.1\\(0\\)n1\\(1b\\)
Cisco Nx-os 6.2\\(6b\\)
Cisco Nx-os 7.1\\(3\\)n1\\(1\\)
Cisco Nx-os 6.0\\(2\\)u3\\(2\\)
Cisco Nx-os 6.0\\(2\\)u2\\(1\\)
Cisco Nx-os 6.0\\(2\\)u6\\(1\\)
Cisco Nx-os 6.0\\(2\\)u2\\(2\\)
Cisco Nx-os 6.0\\(2\\)u3\\(1\\)
Cisco Nx-os 6.0\\(2\\)a6\\(7\\)
Cisco Nx-os 7.1\\(2\\)n1\\(1\\)
Cisco Nx-os 6.0\\(2\\)u5\\(3\\)
Cisco Nx-os 7.2\\(1\\)d1\\(1\\)
Cisco Nx-os 6.0\\(2\\)a7\\(2\\)
Cisco Nx-os 6.0\\(2\\)u2\\(4\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »