aaa vulnerabilities and exploits

(subscribe to this query)

rlmadmin RADIUS management utility in Merit AAA Server 3.8M, 5.01, and possibly other versions, allows local users to read arbitrary files via a symlink attack on the rlmadmin.help file.

Merit Aaa Radius Server 3.8m Merit Aaa Radius Server 5.01

1 EDB exploit

An issue exists in OpenDaylight Authentication, Authorization and Accounting (AAA) up to and including 0.19.3. A rogue controller can join a cluster to impersonate an offline peer, even if this rogue controller does not possess the complete cluster configuration information.

Opendaylight Aaa Opendaylight Authentication, Authorization And Accounting

A vulnerability in the authentication, authorization, and accounting (AAA) security services of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to execute arbitrary code on an affected device or cause an affected device to reload, resulting in a denial...

* Cisco Ios Xe Unknown Cisco Ios Xe 16.7.1 Cisco Ios Xe 16.8.1

A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote malicious user to gain elevated privileges on an affected device. The vulnerability exists because the affected software does not reset the privilege level for e...

* Cisco Ios Xe Software Cisco Ios Xe 16.1.1

A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an unauthenticated, adjacent malicious user to cause an affected device to reload unexpectedly. This vulnerability is due to improper handling of process-switched traffic. An attacker could ...

A vulnerability in the Kerberos authentication feature of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote malicious user to impersonate the Kerberos key distribution center (KDC) and bypass authentication on an affected device that is confi...

Cisco Cisco Adaptive Security Appliance (asa) Software Cisco Asa 5505 Firmware 9.10(1.220)Cisco Asa 5510 Firmware 9.10(1.220)Cisco Asa 5512-x Firmware 9.10(1.220)Cisco Asa 5515-x Firmware 9.10(1.220)Cisco Asa 5520 Firmware 9.10(1.220)Cisco Asa 5525-x Firmware 9.10(1.220)Cisco Asa 5540 Firmware 9.10(1.220)Cisco Asa 5545-x Firmware 9.10(1.220)Cisco Asa 5550 Firmware 9.10(1.220)Cisco Asa 5555-x Firmware 9.10(1.220)Cisco Asa 5580 Firmware 9.10(1.220)

1 Article

The AAA functionality in the IPv4 SSL VPN implementations on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.2 prior to 8.2(5.30) and 8.3 prior to 8.3(2.34) allows remote mali...

Cisco Adaptive Security Appliance Software 8.2 Cisco Adaptive Security Appliance Software 8.2(1)Cisco Adaptive Security Appliance Software 8.2(2)Cisco Adaptive Security Appliance Software 8.2(3)Cisco Adaptive Security Appliance Software 8.2(3.9)Cisco Adaptive Security Appliance Software 8.2(4)Cisco Adaptive Security Appliance Software 8.2(4.1)Cisco Adaptive Security Appliance Software 8.2(4.4)Cisco Adaptive Security Appliance Software 8.2(5)Cisco Adaptive Security Appliance Software 8.3(1)Cisco Adaptive Security Appliance Software 8.3(2)Cisco 5500 Series Adaptive Security Appliance

A vulnerability in the authentication, authorization, and accounting (AAA) implementation of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an unauthenticated, remote malicious user to cause an affected device to reload. The vulnerability...

Cisco Firepower Extensible Operating System Cisco Fxos 2.3 Cisco Nx-os 5.2 Cisco Nx-os 6.2 Cisco Nx-os 6.3 Cisco Nx-os 7.3 Cisco Nx-os 8.1 Cisco Nx-os 8.2 Cisco Nx-os Cisco Nx-os 7.0 Cisco Nx-os 7.0(3)i3(1)Cisco Nx-os 7.1(0.1)

The AAA service in Cisco IOS 12.0 up to and including 12.4 and 15.0 up to and including 15.6 and IOS XE 2.1 up to and including 3.18 and 16.2 allows remote malicious users to cause a denial of service (device reload) via a failed SSH connection attempt that is mishandled during g...

Cisco Ios Cisco Ios Xe Cisco Ios Xe 16.2

The SIP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.2 prior to 8.2(5.17), 8.3 prior to 8.3(2.28), 8.4 prior to 8.4(2.13), 8.5 prior to 8.5(1.4), and 8...

Cisco Adaptive Security Appliance Software 8.2 Cisco Adaptive Security Appliance Software 8.2(1)Cisco Adaptive Security Appliance Software 8.2(2)Cisco Adaptive Security Appliance Software 8.2(3)Cisco Adaptive Security Appliance Software 8.2(3.9)Cisco Adaptive Security Appliance Software 8.2(4)Cisco Adaptive Security Appliance Software 8.2(4.1)Cisco Adaptive Security Appliance Software 8.2(4.4)Cisco Adaptive Security Appliance Software 8.2(5)Cisco Adaptive Security Appliance Software 8.3(1)Cisco Adaptive Security Appliance Software 8.3(2)Cisco Adaptive Security Appliance Software 8.4

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook