Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloud orchestrator vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-2021-34726
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to inject arbitrary commands to be executed with root-level privileges on the underlying operating system of an affected device. This vulnerability is due to insufficient input ...
Cisco Sd-wan
445
VMScore
CVE-2021-23840
Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be...
Openssl Openssl
Debian Debian Linux 10.0
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Tenable Log Correlation Engine
Oracle Business Intelligence 12.2.1.3.0
Oracle Jd Edwards World Security A9.4
Oracle Business Intelligence 12.2.1.4.0
Oracle Business Intelligence 5.5.0.0.0
Oracle Enterprise Manager For Storage Management 13.4.0.0
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Graalvm 20.3.1.2
Oracle Graalvm 21.0.0.2
Oracle Graalvm 19.3.5
Oracle Mysql Server
Oracle Nosql Database
Oracle Jd Edwards Enterpriseone Tools
Oracle Business Intelligence 5.9.0.0.0
Oracle Communications Cloud Native Core Policy 1.15.0
1 Github repository
694
VMScore
CVE-2021-1241
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.5
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.1
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 18.4.5
Cisco Sd-wan Firmware 19.2.0
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.2
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Firmware 20.1.0
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
694
VMScore
CVE-2021-1273
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.5
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.1
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 18.4.5
Cisco Sd-wan Firmware 19.2.0
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.2
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Firmware 20.1.0
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
694
VMScore
CVE-2021-1274
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.5
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.1
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 18.4.5
Cisco Sd-wan Firmware 19.2.0
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.2
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Firmware 20.1.0
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
694
VMScore
CVE-2021-1278
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.5
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.1
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 18.4.5
Cisco Sd-wan Firmware 19.2.0
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.2
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Firmware 20.1.0
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
694
VMScore
CVE-2021-1279
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.5
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.1
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 18.4.5
Cisco Sd-wan Firmware 19.2.0
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.2
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Firmware 20.1.0
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
NA
CVE-2023-20070
A vulnerability in the TLS 1.3 implementation of the Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause the Snort 3 detection engine to unexpectedly restart. This vulnerability is due to a logic error in how memory allocat...
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.2.0
447
VMScore
CVE-2020-13956
Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.
Apache Httpclient
Quarkus Quarkus
Oracle Primavera Unifier 16.2
Oracle Primavera Unifier 16.1
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Primavera Unifier 18.8
Oracle Data Integrator 12.2.1.3.0
Oracle Primavera Unifier
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Primavera Unifier 19.12
Oracle Data Integrator 12.2.1.4.0
Oracle Primavera Unifier 20.12
Oracle Peoplesoft Enterprise Pt Peopletools 8.57
Oracle Nosql Database
Oracle Peoplesoft Enterprise Pt Peopletools 8.59
Oracle Peoplesoft Enterprise Pt Peopletools 8.58
Oracle Retail Customer Management And Segmentation Foundation
Oracle Sql Developer
Oracle Spatial Studio
Oracle Jd Edwards Enterpriseone Tools
Oracle Jd Edwards Enterpriseone Orchestrator
Netapp Snapcenter -
5 Github repositories
356
VMScore
CVE-2020-12143
The certificate used to identify Orchestrator to EdgeConnect devices is not validated, which makes it possible for someone to establish a TLS connection from EdgeConnect to an untrusted Orchestrator.
Silver-peak Unity Edgeconnect For Google Cloud Platform -
Silver-peak Unity Edgeconnect For Azure -
Silver-peak Unity Edgeconnect For Amazon Web Services -
Silver-peak Unity Orchestrator
Silver-peak Vx-500 Firmware -
Silver-peak Vx-1000 Firmware -
Silver-peak Vx-2000 Firmware -
Silver-peak Vx-3000 Firmware -
Silver-peak Vx-5000 Firmware -
Silver-peak Vx-6000 Firmware -
Silver-peak Vx-7000 Firmware -
Silver-peak Vx-9000 Firmware -
Silver-peak Vx-8000 Firmware -
Silver-peak Nx-700 Firmware -
Silver-peak Nx-1000 Firmware -
Silver-peak Nx-2000 Firmware -
Silver-peak Nx-3000 Firmware -
Silver-peak Nx-5000 Firmware -
Silver-peak Nx-6000 Firmware -
Silver-peak Nx-7000 Firmware -
Silver-peak Nx-8000 Firmware -
Silver-peak Nx-9000 Firmware -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »