Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
section 8 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2022-20821
A vulnerability in the health check RPM of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to access the Redis instance that is running within the NOSi container. This vulnerability exists because the health check RPM opens TCP port 6379 by default upo...
Cisco Ios Xr -
NA
CVE-2005-3921
Cross-site scripting (XSS) vulnerability in Cisco IOS Web Server for IOS 12.0(2a) allows remote malicious users to inject arbitrary web script or HTML by (1) packets containing HTML that an administrator views via an HTTP interface to the contents of memory buffers, as demonstrat...
Cisco Ios 12.3\\(11\\)t4
Cisco Ios 12.3\\(11\\)t5
Cisco Ios 12.3\\(11\\)yf3
Cisco Ios 12.3\\(11\\)yf4
Cisco Ios 12.3\\(11\\)yr
Cisco Ios 12.3\\(11\\)ys
Cisco Ios 12.3\\(13a\\)
Cisco Ios 12.3\\(13a\\)bc
Cisco Ios 12.3\\(14\\)yq
Cisco Ios 12.3\\(14\\)yq1
Cisco Ios 12.3\\(15\\)
Cisco Ios 12.3\\(15b\\)
Cisco Ios 12.3\\(2\\)t3
Cisco Ios 12.3\\(2\\)t8
Cisco Ios 12.3\\(2\\)xe4
Cisco Ios 12.3\\(3e\\)
Cisco Ios 12.3\\(4\\)t1
Cisco Ios 12.3\\(4\\)t2
Cisco Ios 12.3\\(4\\)xd2
Cisco Ios 12.3\\(4\\)xe4
Cisco Ios 12.3\\(4\\)xg1
Cisco Ios 12.3\\(4\\)xk3
8.8
CVSSv3
CVE-2022-20650
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote malicious user to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation of user supplied data that is sent to the NX-API. An att...
Cisco Nx-os 10.2\\(1.72\\)
Cisco Nx-os 7.3\\(8\\)n1\\(0.4\\)
5.7
CVSSv3
CVE-2023-36672
An issue exists in the Clario VPN client up to and including 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if the local network is using a non-RFC1918 IP subn...
Clario Vpn
2 Articles
7.3
CVSSv3
CVE-2023-36673
An issue exists in Avira Phantom VPN up to and including 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel, even if this traffic is not generated by ...
Avira Phantom Vpn
2 Articles
7.4
CVSSv3
CVE-2020-3577
A vulnerability in the ingress packet processing path of Cisco Firepower Threat Defense (FTD) Software for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition....
Cisco Firepower Threat Defense
NA
CVE-2002-0085
cachefsd in Solaris 2.6, 7, and 8 allows remote malicious users to cause a denial of service (crash) via an invalid procedure call in an RPC request.
Sun Solaris 2.6
Sun Sunos 5.7
Sun Solaris 8.0
6.8
CVSSv3
CVE-2020-3524
A vulnerability in the Cisco IOS XE ROM Monitor (ROMMON) Software for Cisco 4000 Series Integrated Services Routers, Cisco ASR 920 Series Aggregation Services Routers, Cisco ASR 1000 Series Aggregation Services Routers, and Cisco cBR-8 Converged Broadband Routers could allow an u...
Cisco Ios Xe Rom Monitor
7.5
CVSSv3
CVE-2019-12653
A vulnerability in the Raw Socket Transport feature of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to improper parsing of Raw Sock...
Cisco Ios Xe 16.9
Cisco Ios Xe 16.10.1
NA
CVE-2003-1063
The patches (1) 105693-13, (2) 108800-02, (3) 105694-13, and (4) 108801-02 for cachefs on Solaris 2.6 and 7 overwrite the inetd.conf file, which may silently reenable services and allow remote malicious users to bypass the intended security policy.
Sun Solaris 2.6
Sun Sunos -
Sun Sunos 5.7
Sun Solaris 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »