Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gateway vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-2022
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/list_ipAddressPolicy.php. The manipulation of the argument GroupId leads to sql injectio...
NA
CVE-2024-20321
A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability exists because eBGP traffic is mapped...
Cisco Nx-os 9.2\\(2\\)
Cisco Nx-os 9.2\\(1\\)
Cisco Nx-os 7.0\\(3\\)f3\\(3\\)
Cisco Nx-os 9.3\\(1\\)
Cisco Nx-os 9.2\\(3\\)
Cisco Nx-os 7.0\\(3\\)f3\\(1\\)
Cisco Nx-os 7.0\\(3\\)f3\\(2\\)
Cisco Nx-os 7.0\\(3\\)f3\\(4\\)
Cisco Nx-os 7.0\\(3\\)f3\\(3a\\)
Cisco Nx-os 7.0\\(3\\)f3\\(3c\\)
Cisco Nx-os 7.0\\(3\\)f3\\(5\\)
Cisco Nx-os 9.3\\(5\\)
Cisco Nx-os 9.3\\(6\\)
Cisco Nx-os 9.3\\(7\\)
Cisco Nx-os 9.3\\(4\\)
Cisco Nx-os 9.3\\(3\\)
Cisco Nx-os 7.0\\(3\\)f2\\(1\\)
Cisco Nx-os 7.0\\(3\\)f1\\(1\\)
Cisco Nx-os 7.0\\(3\\)f2\\(2\\)
Cisco Nx-os 9.3\\(2\\)
Cisco Nx-os 9.2\\(2t\\)
Cisco Nx-os 9.2\\(2v\\)
NA
CVE-2024-1403
In OpenEdge Authentication Gateway and AdminServer before 11.7.19, 12.2.14, 12.8.1 on all platforms supported by the OpenEdge product, an authentication bypass vulnerability has been identified. The vulnerability is a bypass to authentication based on a failure to properly handle...
1 Github repository
NA
CVE-2024-0865
This vulnerability allows local attackers to escalate privileges on affected installations of Schneider Electric EcoStruxure IT Gateway. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The speci...
NA
CVE-2024-0610
The Piraeus Bank WooCommerce Payment Gateway plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'MerchantReference' parameter in all versions up to, and including, 1.6.5.1 due to insufficient escaping on the user supplied parameter and lack of ...
NA
CVE-2024-0009
An improper verification vulnerability in the GlobalProtect gateway feature of Palo Alto Networks PAN-OS software enables a malicious user with stolen credentials to establish a VPN connection from an unauthorized IP address.
NA
CVE-2023-44294
In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between v5.10.00.00 and v5.18.00.00), a security concern has been identified, where a malicious user with a valid User session may inject malicious content in filters of Collection Rest API. This is...
NA
CVE-2023-44293
In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between v5.10.00.00 and v5.18.00.00), a security concern has been identified, where a malicious user with a valid User session may inject malicious content in filters of IP Range Rest API. This issu...
NA
CVE-2024-22024
An XML external entity or XXE vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x), Ivanti Policy Secure (9.x, 22.x) and ZTA gateways which allows an malicious user to access certain restricted resources without authentication.
Ivanti Connect Secure 22.5
Ivanti Connect Secure 9.1
Ivanti Connect Secure 22.4
Ivanti Policy Secure 22.5
Ivanti Zero Trust Access 22.6
2 Github repositories
6 Articles
NA
CVE-2024-24753
Bref enable serverless PHP on AWS Lambda. When Bref is used in combination with an API Gateway with the v2 format, it does not handle multiple values headers. If PHP generates a response with two headers having the same key but different values only the latest one is kept. If an ...
Mnapoli Bref
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »