Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
static vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-2568
d41d8cd98f00b204e9800998ecf8427e.php in the management web server on the Seagate BlackArmor device allows remote malicious users to change the administrator password via unspecified vectors.
Seagate Blackarmor Nas
7.8
CVSSv3
CVE-2021-1219
A vulnerability in Cisco Smart Software Manager Satellite could allow an authenticated, local malicious user to access sensitive information on an affected system. The vulnerability is due to insufficient protection of static credentials in the affected software. An attacker coul...
Cisco Smart Software Manager On-prem
7.8
CVSSv3
CVE-2019-1919
A vulnerability in the Cisco FindIT Network Management Software virtual machine (VM) images could allow an unauthenticated, local attacker who has access to the VM console to log in to the device with a static account that has root privileges. The vulnerability is due to the pres...
Cisco Findit Network Probe 1.1.4
Cisco Findit Network Manager 1.1.4
8.2
CVSSv3
CVE-2017-12350
A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and previous versions could allow an authenticated, local malicious user to log in to an affected virtual appliance with root privileges. The vulnerability is due to the presence of default, static user credentia...
Cisco Umbrella Insights Virtual Appliance
10
CVSSv3
CVE-2018-0222
A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote malicious user to log in to an affected system by using an administrative account that has default, static user credentials. The vulnerability is due to the presence of undoc...
Cisco Digital Network Architecture Center
NA
CVE-2009-1228
Cross-site scripting (XSS) vulnerability in register.php in Arcadwy Arcade Script CMS allows remote malicious users to inject arbitrary web script or HTML via the username field (user_name parameter).
Arcadwy Arcadwy Arcade Script Cms -
1 EDB exploit
7.8
CVSSv3
CVE-2020-3180
A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, local malicious user to access an affected device by using an account that has a default, static password. This account has root privileges. The vulnerability exists because the affected software ha...
Cisco Sd-wan
8.8
CVSSv3
CVE-2015-6397
Cisco RV110W, RV130W, and RV215W devices have an incorrect RBAC configuration for the default account, which allows remote authenticated users to obtain root access via a login session with that account, aka Bug IDs CSCuv90139, CSCux58175, and CSCux73557.
Cisco Rv110w Wireless-n Vpn Firewall Firmware
Cisco Rv130w Wireless-n Multifunction Vpn Router Firmware
Cisco Rv215w Wireless-n Vpn Router Firmware
NA
CVE-2015-4196
Platform Software prior to 4.4.5 in Cisco Unified Communications Domain Manager (CDM) 8.x has a hardcoded password for a privileged account, which allows remote malicious users to obtain root access by leveraging knowledge of this password and entering it in an SSH session, aka B...
Cisco Unified Communications Domain Manager 4.4.3
Cisco Unified Communications Domain Manager 4.4.1
Cisco Unified Communications Domain Manager 4.4.2
Cisco Unified Communications Domain Manager 4.4.4
5.3
CVSSv3
CVE-2018-0329
A vulnerability in the default configuration of the Simple Network Management Protocol (SNMP) feature of Cisco Wide Area Application Services (WAAS) Software could allow an unauthenticated, remote malicious user to read data from an affected device via SNMP. The vulnerability is ...
Cisco Wide Area Application Services 6.4\\(1\\)
Cisco Wide Area Application Services 6.2\\(3\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »