Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frame vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-5523
The Sponsor Portal in Cisco Identity Services Engine (ISE) 1.2 and previous versions does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related t...
Cisco Identity Services Engine Software 1.0
Cisco Identity Services Engine Software
Cisco Identity Services Engine Software 1.1
6.5
CVSSv3
CVE-2020-3465
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent malicious user to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical, Ethernet frames. An attacker could exploit this vulnerability by sending...
Cisco Ios Xe 16.6.9
Cisco Ios Xe 17.4.1
NA
CVE-2013-1226
The Ethernet frame-forwarding implementation in Cisco NX-OS on Nexus 7000 devices allows remote malicious users to cause a denial of service (forwarding loop and service outage) via a crafted frame, aka Bug ID CSCug47098.
Cisco Nx-os -
Cisco Nexus 7000 -
Cisco Nexus 7000 10-slot -
Cisco Nexus 7000 18-slot -
Cisco Nexus 7000 9-slot -
6.5
CVSSv3
CVE-2017-2365
An issue exists in certain Apple products. iOS prior to 10.2.1 is affected. Safari prior to 10.0.3 is affected. tvOS prior to 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote malicious users to bypass the Same Origin Policy and obtain sens...
Apple Iphone Os
Apple Safari
Apple Tvos
Webkitgtk Webkitgtk\\+
1 EDB exploit
8.6
CVSSv3
CVE-2020-3527
A vulnerability in the Polaris kernel of Cisco Catalyst 9200 Series Switches could allow an unauthenticated, remote malicious user to crash the device. The vulnerability is due to insufficient packet size validation. An attacker could exploit this vulnerability by sending jumbo f...
Cisco Ios Xe
NA
CVE-2021-1285
Multiple Cisco products are affected by a vulnerability in the Ethernet Frame Decoder of the Snort detection engine that could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper handling of error conditio...
7.4
CVSSv3
CVE-2018-0235
A vulnerability in the 802.11 frame validation functionality of the Cisco Wireless LAN Controller (WLC) could allow an unauthenticated, adjacent malicious user to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability ...
Cisco Wireless Lan Controller Software 8.6\\(1.106\\)
Cisco Wireless Lan Controller Software 8.6\\(1.114\\)
NA
CVE-2002-1187
Cross-site scripting vulnerability (XSS) in Internet Explorer 5.01 up to and including 6.0 allows remote malicious users to read and execute files on the local system via web pages using the <frame> or <iframe> element and javascript, aka "Frames Cross Site Scrip...
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 5.0.1
Microsoft Internet Explorer 5.0
Microsoft Internet Explorer 6.0
1 EDB exploit
NA
CVE-2000-0465
Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote malicious user to read client files via the frame, aka the "Frame Domain Verification" vulnerability.
Microsoft Internet Explorer 5.0
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 4.0
1 EDB exploit
NA
CVE-2015-6311
Cisco Wireless LAN Controller (WLC) devices with software 7.0(240.0), 7.3(101.0), and 7.4(1.19) allow remote malicious users to cause a denial of service (device outage) by sending malformed 802.11i management data to a managed access point, aka Bug ID CSCub65236.
Cisco Wireless Lan Controller 7.0\\(240.0\\)
Cisco Wireless Lan Controller 7.4\\(1.19\\)
Cisco Wireless Lan Controller 7.3\\(101.0\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »