Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
acl vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4411
The (1) setfacl and (2) getfacl commands in XFS acl 2.2.47, when running in recursive (-R) mode, follow symbolic links even when the --physical (aka -P) or -L option is specified, which might allow local users to modify the ACL for arbitrary files or directories via a symlink att...
Xfs Acl 2.2.47
8.6
CVSSv3
CVE-2020-3407
A vulnerability in the RESTCONF and NETCONF-YANG access control list (ACL) function of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause the device to reload. The vulnerability is due to incorrect processing of the ACL that is tied to the RESTCO...
Cisco Ios Xe 15.8\\(3\\)m3
5.3
CVSSv3
CVE-2023-20190
A vulnerability in the classic access control list (ACL) compression feature of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to bypass the protection that is offered by a configured ACL on an affected device. This vulnerability is due to incorrect d...
Cisco Ios Xr
Cisco Ios Xr 7.9
7.5
CVSSv3
CVE-2016-6422
Cisco IOS 12.2(33)SXJ9 on Supervisor Engine 32 and 720 modules for 6500 and 7600 devices mishandles certain operators, flags, and keywords in TCAM share ACLs, which allows remote malicious users to bypass intended access restrictions by sending packets that should have been recog...
Cisco Ios 12.2\\(33\\)sxj9
5.3
CVSSv3
CVE-2019-1969
A vulnerability in the implementation of the Simple Network Management Protocol (SNMP) Access Control List (ACL) feature of Cisco NX-OS Software could allow an unauthenticated, remote malicious user to perform SNMP polling of an affected device, even if it is configured to deny S...
Cisco Nx-os 9.2\\(2\\)
Cisco Nx-os 7.0\\(3\\)i7\\(3\\)
Cisco Nx-os 7.0\\(3\\)f
Cisco Nx-os 9.2
8.8
CVSSv3
CVE-2018-0279
A vulnerability in the Secure Copy Protocol (SCP) server of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to access the shell of the underlying Linux operating system on the affected device. The vulnerability is due to im...
Cisco Enterprise Nfv Infrastructure Software
Cisco Enterprise Nfv Infrastructure Software 3.7.1
7.5
CVSSv3
CVE-2023-20191
A vulnerability in the access control list (ACL) processing on MPLS interfaces in the ingress direction of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to bypass a configured ACL. This vulnerability is due to incomplete support for this feature. An ...
Cisco Ios Xr 7.10
Cisco Ios Xr
6.5
CVSSv3
CVE-2021-1389
A vulnerability in the IPv6 traffic processing of Cisco IOS XR Software and Cisco NX-OS Software for certain Cisco devices could allow an unauthenticated, remote malicious user to bypass an IPv6 access control list (ACL) that is configured for an interface of an affected device. ...
Cisco Ios Xr
Cisco Ios Xr 7.1.0
Cisco Ios Xr 7.2.0
Cisco Nx-os -
5.8
CVSSv3
CVE-2021-34696
A vulnerability in the access control list (ACL) programming of Cisco ASR 900 and ASR 920 Series Aggregation Services Routers could allow an unauthenticated, remote malicious user to bypass a configured ACL. This vulnerability is due to incorrect programming of hardware when an A...
Cisco Ios Xe
4.9
CVSSv3
CVE-2022-20949
A vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker with high privileges to execute configuration commands on an affected system. This vulnerability exists because access to HTTPS endpoints is...
Cisco Firepower Threat Defense 6.2.1
Cisco Firepower Threat Defense
Cisco Firepower Threat Defense 7.1.0.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
Cisco Firepower Threat Defense 7.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »