Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
acl vulnerabilities and exploits
(subscribe to this query)
329
VMScore
CVE-2009-4411
The (1) setfacl and (2) getfacl commands in XFS acl 2.2.47, when running in recursive (-R) mode, follow symbolic links even when the --physical (aka -P) or -L option is specified, which might allow local users to modify the ACL for arbitrary files or directories via a symlink att...
Xfs Acl 2.2.47
632
VMScore
CVE-2020-3407
A vulnerability in the RESTCONF and NETCONF-YANG access control list (ACL) function of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause the device to reload. The vulnerability is due to incorrect processing of the ACL that is tied to the RESTCO...
Cisco Ios Xe 15.8\\(3\\)m3
NA
CVE-2023-20190
A vulnerability in the classic access control list (ACL) compression feature of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to bypass the protection that is offered by a configured ACL on an affected device. This vulnerability is due to incorrect d...
Cisco Ios Xr
Cisco Ios Xr 7.9
383
VMScore
CVE-2016-6422
Cisco IOS 12.2(33)SXJ9 on Supervisor Engine 32 and 720 modules for 6500 and 7600 devices mishandles certain operators, flags, and keywords in TCAM share ACLs, which allows remote malicious users to bypass intended access restrictions by sending packets that should have been recog...
Cisco Ios 12.2\\(33\\)sxj9
445
VMScore
CVE-2019-1969
A vulnerability in the implementation of the Simple Network Management Protocol (SNMP) Access Control List (ACL) feature of Cisco NX-OS Software could allow an unauthenticated, remote malicious user to perform SNMP polling of an affected device, even if it is configured to deny S...
Cisco Nx-os 9.2\\(2\\)
Cisco Nx-os 7.0\\(3\\)i7\\(3\\)
Cisco Nx-os 7.0\\(3\\)f
Cisco Nx-os 9.2
801
VMScore
CVE-2018-0279
A vulnerability in the Secure Copy Protocol (SCP) server of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to access the shell of the underlying Linux operating system on the affected device. The vulnerability is due to im...
Cisco Enterprise Nfv Infrastructure Software
Cisco Enterprise Nfv Infrastructure Software 3.7.1
NA
CVE-2023-20191
A vulnerability in the access control list (ACL) processing on MPLS interfaces in the ingress direction of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to bypass a configured ACL. This vulnerability is due to incomplete support for this feature. An ...
Cisco Ios Xr 7.10
Cisco Ios Xr
570
VMScore
CVE-2021-1389
A vulnerability in the IPv6 traffic processing of Cisco IOS XR Software and Cisco NX-OS Software for certain Cisco devices could allow an unauthenticated, remote malicious user to bypass an IPv6 access control list (ACL) that is configured for an interface of an affected device. ...
Cisco Ios Xr
Cisco Ios Xr 7.1.0
Cisco Ios Xr 7.2.0
Cisco Nx-os -
445
VMScore
CVE-2021-34696
A vulnerability in the access control list (ACL) programming of Cisco ASR 900 and ASR 920 Series Aggregation Services Routers could allow an unauthenticated, remote malicious user to bypass a configured ACL. This vulnerability is due to incorrect programming of hardware when an A...
Cisco Ios Xe
NA
CVE-2022-20949
A vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker with high privileges to execute configuration commands on an affected system. This vulnerability exists because access to HTTPS endpoints is...
Cisco Firepower Threat Defense 6.2.1
Cisco Firepower Threat Defense
Cisco Firepower Threat Defense 7.1.0.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
Cisco Firepower Threat Defense 7.2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »