Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web gateway vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-23854
AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.
Aveva Intouch Access Anywhere 2020
Aveva Intouch Access Anywhere
1 EDB exploit
7.5
CVSSv3
CVE-2022-31805
In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected.
Codesys Runtime Toolkit
Codesys Plcwinnt
Codesys Plchandler
Codesys Opc Server
Codesys Edge Gateway
Codesys Hmi Sl
Codesys Sp Realtime Nt
Codesys Web Server
Codesys Gateway
Codesys Development System
1 Github repository
7.5
CVSSv3
CVE-2022-24761
Waitress is a Web Server Gateway Interface server for Python 2 and 3. When using Waitress versions 2.1.0 and prior behind a proxy that does not properly validate the incoming HTTP request matches the RFC7230 standard, Waitress and the frontend proxy may disagree on where one requ...
Agendaless Waitress
Debian Debian Linux 9.0
7.5
CVSSv3
CVE-2021-44716
net/http in Go prior to 1.16.12 and 1.17.x prior to 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.
Golang Go
Debian Debian Linux 9.0
Netapp Cloud Insights Telegraf -
7.5
CVSSv3
CVE-2002-20001
The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ater attack. The client needs ver...
Balasys Dheater -
Siemens Scalance W1750d Firmware
Suse Linux Enterprise Server 15
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 12
F5 Big-iq Centralized Management 7.1.0
F5 Traffix Signaling Delivery Controller 5.2.0
F5 Traffix Signaling Delivery Controller 5.1.0
F5 Big-iq Centralized Management
F5 Big-ip Service Proxy 1.6.0
F5 Big-ip Access Policy Manager
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Advanced Web Application Firewall
F5 Big-ip Analytics
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Security Manager
F5 Big-ip Application Visibility And Reporting
F5 Big-ip Carrier-grade Nat
F5 Big-ip Ddos Hybrid Defender
F5 Big-ip Domain Name System
F5 Big-ip Edge Gateway
F5 Big-ip Fraud Protection Service
3 Github repositories
7.5
CVSSv3
CVE-2020-6590
Forcepoint Web Security Content Gateway versions before 8.5.4 improperly process XML input, leading to information disclosure.
Forcepoint Data Loss Prevention
Forcepoint Email Security
Forcepoint Web Security Content Gateway
7.5
CVSSv3
CVE-2021-1460
A vulnerability in the Cisco IOx Application Framework of Cisco 809 Industrial Integrated Services Routers (Industrial ISRs), Cisco 829 Industrial ISRs, Cisco CGR 1000 Compute Module, and Cisco IC3000 Industrial Compute Gateway could allow an unauthenticated, remote malicious use...
Cisco Ios
Cisco Cgr1000 Firmware
Cisco Ic3000 Industrial Compute Gateway Firmware
7.5
CVSSv3
CVE-2019-12656
A vulnerability in the IOx application environment of multiple Cisco platforms could allow an unauthenticated, remote malicious user to cause the IOx web server to stop processing HTTPS requests, resulting in a denial of service (DoS) condition. The vulnerability is due to a Tran...
Cisco Ios 1.8.0
Cisco Ios 1.6.0.0
Cisco Industrial Ethernet 2000 Series Firmware 15.2\\(6\\)e
Cisco Ic3000 Firmware -
Cisco Ie 4000 Firmware -
Cisco Cgr 1000 Firmware -
Cisco Ir510 Wpan Firmware -
7.5
CVSSv3
CVE-2019-3644
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.
Mcafee Web Gateway
Mcafee Active Response 2.0.1
Mcafee Active Response 2.1
Mcafee Active Response 2.2
Mcafee Active Response 2.3
Mcafee Active Response 2.4
Mcafee Active Response 2.0
Mcafee Enterprise Security Manager 10.2.0
Mcafee Enterprise Security Manager 10.3.4
Mcafee Enterprise Security Manager 10.4.0
Mcafee Enterprise Security Manager 11.0.0
Mcafee Enterprise Security Manager 11.1.0
Mcafee Enterprise Security Manager 11.1.1
Mcafee Enterprise Security Manager 11.1.2
Mcafee Enterprise Security Manager 11.1.3
Mcafee Enterprise Security Manager 11.2.0
Mcafee Advanced Threat Defense 4.0
Mcafee Advanced Threat Defense 4.2
Mcafee Advanced Threat Defense 4.4
Mcafee Advanced Threat Defense 4.6
Mcafee Active Response 1.0.0
Mcafee Active Response 1.1.0
7.5
CVSSv3
CVE-2019-3643
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.
Mcafee Web Gateway
Mcafee Active Response 2.0.1
Mcafee Active Response 2.1
Mcafee Active Response 2.2
Mcafee Active Response 2.3
Mcafee Active Response 2.4
Mcafee Active Response 2.0
Mcafee Enterprise Security Manager 10.2.0
Mcafee Enterprise Security Manager 10.3.4
Mcafee Enterprise Security Manager 10.4.0
Mcafee Enterprise Security Manager 11.0.0
Mcafee Enterprise Security Manager 11.1.0
Mcafee Enterprise Security Manager 11.1.1
Mcafee Enterprise Security Manager 11.1.2
Mcafee Enterprise Security Manager 11.1.3
Mcafee Enterprise Security Manager 11.2.0
Mcafee Advanced Threat Defense 4.0
Mcafee Advanced Threat Defense 4.2
Mcafee Advanced Threat Defense 4.4
Mcafee Advanced Threat Defense 4.6
Mcafee Active Response 1.0.0
Mcafee Active Response 1.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »