Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
acc vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-3191
Idelji Web ViewPoint Suite, as used in conjunction with HPE NonStop, allows Remote Unauthorized Access for T0320L01^ABY and T0320L01^ACD, T0952L01^AAR through T0952L01^AAX, and T0986L01^AAD through T0986L01^AAJ (L) and T0320H01^ABW through T0320H01^ACC, T0952H01^AAQ through T0952...
Hpe Web Viewpoint
Hpe Web Viewpoint 15.02.00
Hpe Web Viewpoint 15.02.01
Hpe Web Viewpoint T0320l01\\^aby
Hpe Web Viewpoint T0320l01\\^acd
9.8
CVSSv3
CVE-2016-4372
HPE iMC PLAT prior to 7.2 E0403P04, iMC EAD prior to 7.2 E0405P05, iMC APM prior to 7.2 E0401P04, iMC NTA prior to 7.2 E0401P01, iMC BIMS prior to 7.2 E0402P02, and iMC UAM_TAM prior to 7.2 E0405P05 allow remote malicious users to execute arbitrary commands via a crafted serializ...
Hp Intelligent Management Center User Access Management
Hp Intelligent Management Center Platform
Hp Intelligent Management Center Network Traffic Analyzer
Hp Intelligent Management Center Endpoint Admission Defense
Hp Intelligent Management Center Branch Intelligent Management System
Hp Intelligent Management Center Application Performance Manager
1 EDB exploit
9.8
CVSSv3
CVE-2017-10934
All versions prior to V5.09.02.02T4 of the ZTE ZXIPTV-EPG product use the Java RMI service in which the servers use the Apache Commons Collections (ACC) library that may result in Java deserialization vulnerabilities. An unauthenticated remote attacker can exploit the vulnerabili...
Zte Zxiptv-epg Firmware
NA
CVE-2015-6420
Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Se...
Apache Commons Collections
Apache Commons Collections 4.0
5 Github repositories
9.8
CVSSv3
CVE-2017-5586
OpenText Documentum D2 (formerly EMC Documentum D2) 4.x allows remote malicious users to execute arbitrary commands via a crafted serialized Java object, related to the BeanShell (bsh) and Apache Commons Collections (ACC) libraries.
Opentext Documentum D2 4.1
Opentext Documentum D2 4.4
Opentext Documentum D2 4.3
Opentext Documentum D2 4.0
Opentext Documentum D2 4.2
Opentext Documentum D2 4.5
Opentext Documentum D2 4.6
1 EDB exploit
1 Github repository
9.8
CVSSv3
CVE-2017-10932
All versions prior to V12.17.20 of the ZTE Microwave NR8000 series products - NR8120, NR8120A, NR8120, NR8150, NR8250, NR8000 TR and NR8950 are the applications of C/S architecture using the Java RMI service in which the servers use the Apache Commons Collections (ACC) library th...
Zte Nr8120 Firmware -
Zte Nr8120a Firmware -
Zte Nr8150 Firmware -
Zte Nr8250 Firmware -
Zte Nr8000tr Firmware -
Zte Nr8950 Firmware -
9.8
CVSSv3
CVE-2021-45467
In CWP (aka Control Web Panel or CentOS Web Panel) prior to 0.9.8.1107, an unauthenticated attacker can use %00 bytes to cause /user/loader.php to register an arbitrary API key, as demonstrated by a /user/loader.php?api=1&scripts= .%00./.%00./api/account_new_create&acc=gu...
Control-webpanel Webpanel
8.2
CVSSv3
CVE-2023-20223
A vulnerability in Cisco DNA Center could allow an unauthenticated, remote malicious user to read and modify data in a repository that belongs to an internal service on an affected device. This vulnerability is due to insufficient access control enforcement on API requests. An at...
Cisco Dna Center
9.8
CVSSv3
CVE-2020-3284
A vulnerability in the enhanced Preboot eXecution Environment (PXE) boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote malicious user to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BI...
Cisco A9k-rsp880-se Firmware
Cisco Ios Xr
Cisco A9k-rsp880-tr Firmware
Cisco A99-rp2-se Firmware
Cisco A99-rp2-tr Firmware
Cisco A99-rsp-se Firmware
Cisco A99-rsp-tr Firmware
Cisco A9k-rsp880-lt-se Firmware
Cisco A9k-rsp880-lt-tr Firmware
Cisco Asr-9901-rp Firmware
Cisco A99-rp3-se Firmware
Cisco A99-rp3-tr Firmware
Cisco A9k-rsp5-se Firmware
Cisco A9k-rsp5-tr Firmware
Cisco Ncs1001 Firmware
Cisco Ncs1002 Firmware
Cisco Ncs1004 Firmware
Cisco N540-12z20g-sys-a\\/d Firmware
Cisco N540-24z8q2c-m Firmware
Cisco N540-28z4c-sys-a\\/d Firmware
Cisco N540-acc-sys Firmware
Cisco N540x-16z4g8q2c-a\\/d Firmware
6.7
CVSSv3
CVE-2019-1649
A vulnerability in the logic that handles access control to one of the hardware components in Cisco's proprietary Secure Boot implementation could allow an authenticated, local malicious user to write a modified firmware image to the component. This vulnerability affects mul...
Cisco Asa 5500 Firmware
Cisco Firepower 2100 Firmware
Cisco Firepower 4000 Firmware
Cisco Firepower 9000 Firmware
Cisco Ons 15454 Mstp Firmware
Cisco Analog Voice Network Interface Modules Firmware
Cisco Integrated Services Router T1\\/e1 Voice And Wan Network Interface Modules Firmware
Cisco Supervisor A\\+ Firmware
Cisco Supervisor B\\+ Firmware
Cisco 15454-m-wse-k9 Firmware
Cisco Ios Xe
Cisco Ios
Cisco Industrial Security Appliances 3000 Firmware
Cisco Integrated Services Router 4200 Firmware
Cisco Integrated Services Router 4300 Firmware
Cisco Integrated Services Router 4400 Firmware
Cisco Asr 1000 Series Firmware
Cisco Asr 1001 Firmware 16.0.0
Cisco Ios Xr 7.0.1
Cisco Catalyst 9800-40 Wireless Controller Firmware -
Cisco Catalyst 9800-80 Wireless Controller Firmware -
Cisco Ic3000-k9 Firmware
2 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4