Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vpn client vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2020-3435
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to overwrite VPN profiles on an affected device. To exploit this vulnerability, the attacker would need to hav...
Cisco Anyconnect Secure Mobility Client
5
CVSSv2
CVE-2020-3452
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to conduct directory traversal attacks and read sensitive files on a targeted ...
Cisco Adaptive Security Appliance Software
Cisco Firepower Threat Defense
58 Github repositories
2 Articles
5
CVSSv2
CVE-2020-13413
An issue exists in Aviatrix Controller prior to 5.4.1204. There is a Observable Response Discrepancy from the API, which makes it easier to perform user enumeration via brute force.
Aviatrix Controller
Aviatrix Vpn Client 2.8.2
7.5
CVSSv2
CVE-2020-13417
An Elevation of Privilege issue exists in Aviatrix VPN Client prior to 2.10.7, because of an incomplete fix for CVE-2020-7224. This affects Linux, macOS, and Windows installations for certain OpenSSL parameters.
Aviatrix Controller
Aviatrix Gateway
Aviatrix Vpn Client
7.5
CVSSv2
CVE-2020-3187
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to conduct directory traversal attacks and obtain read and delete access to se...
Cisco Firepower Threat Defense
Cisco Asa 5505 Firmware 9.6\\(4\\)
Cisco Asa 5510 Firmware 9.6\\(4\\)
Cisco Asa 5512-x Firmware 9.6\\(4\\)
Cisco Asa 5515-x Firmware 9.6\\(4\\)
Cisco Asa 5520 Firmware 9.6\\(4\\)
Cisco Asa 5525-x Firmware 9.6\\(4\\)
Cisco Asa 5540 Firmware 9.6\\(4\\)
Cisco Asa 5545-x Firmware 9.6\\(4\\)
Cisco Asa 5550 Firmware 9.6\\(4\\)
Cisco Asa 5555-x Firmware 9.6\\(4\\)
Cisco Asa 5580 Firmware 9.6\\(4\\)
Cisco Asa 5585-x Firmware 9.6\\(4\\)
Cisco Adaptive Security Appliance Software
2 Github repositories
1 Article
5
CVSSv2
CVE-2020-3259
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to retrieve memory contents on an affected device, which could lead to the dis...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance Software
2 Articles
4.3
CVSSv2
CVE-2020-5893
In versions 7.1.5-7.1.8, when a user connects to a VPN using BIG-IP Edge Client over an unsecure network, BIG-IP Edge Client responds to authentication requests over HTTP while sending probes for captive portal detection.
F5 Big-ip Access Policy Manager
F5 Big-ip Access Policy Manager Client
4.3
CVSSv2
CVE-2020-11810
An issue exists in OpenVPN 2.4.x prior to 2.4.9. An attacker can inject a data channel v2 (P_DATA_V2) packet using a victim's peer-id. Normally such packets are dropped, but if this packet arrives before the data channel crypto parameters have been initialized, the victim...
Openvpn Openvpn
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 30
Fedoraproject Fedora 32
10
CVSSv2
CVE-2020-9054
Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.21 contain a pre-authentication command injection vulnerability, which may allow a remote, unauthenticated malicious user to execute arbitrary code on a vulnerable device. ZyXEL NAS devices achieve a...
Zyxel Nas326 Firmware
Zyxel Nas520 Firmware
Zyxel Nas540 Firmware
Zyxel Nas542 Firmware
Zyxel Atp100 Firmware
Zyxel Atp200 Firmware
Zyxel Atp500 Firmware
Zyxel Atp800 Firmware
Zyxel Usg20-vpn Firmware
Zyxel Usg20w-vpn Firmware
Zyxel Usg40 Firmware
Zyxel Usg40w Firmware
Zyxel Usg60 Firmware
Zyxel Usg60w Firmware
Zyxel Usg110 Firmware
Zyxel Usg210 Firmware
Zyxel Usg310 Firmware
Zyxel Usg1100 Firmware
Zyxel Usg1900 Firmware
Zyxel Usg2200 Firmware
Zyxel Vpn50 Firmware
Zyxel Vpn100 Firmware
1 Github repository
1 Article
6
CVSSv2
CVE-2011-2054
A vulnerability in the Cisco ASA that could allow a remote malicious user to successfully authenticate using the Cisco AnyConnect VPN client if the Secondary Authentication type is LDAP and the password is left blank, providing the primary credentials are correct. The vulnerabili...
Cisco Asa 5500 Firmware 8.4\\(1\\)
Cisco Asa 5510 Firmware 8.4\\(1\\)
Cisco Asa 5512-x Firmware 8.4\\(1\\)
Cisco Asa 5515-x Firmware 8.4\\(1\\)
Cisco Asa 5520 Firmware 8.4\\(1\\)
Cisco Asa 5525-x Firmware 8.4\\(1\\)
Cisco Asa 5540 Firmware 8.4\\(1\\)
Cisco Asa 5545-x Firmware 8.4\\(1\\)
Cisco Asa 5550 Firmware 8.4\\(1\\)
Cisco Asa 5555-x Firmware 8.4\\(1\\)
Cisco Asa 5580 Firmware 8.4\\(1\\)
Cisco Asa 5585-x Firmware 8.4\\(1\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »