Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
appliance vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2021-43587
Dell PowerPath Management Appliance, versions 3.2, 3.1, 3.0 P01, 3.0, and 2.6, use hard-coded cryptographic key. A local high-privileged malicious user may potentially exploit this vulnerability to gain access to secrets and elevate to gain higher privileges.
Dell Powerpath Management Appliance 2.6
Dell Powerpath Management Appliance 3.0
Dell Powerpath Management Appliance 3.1
Dell Powerpath Management Appliance 3.2
7.2
CVSSv3
CVE-2022-34447
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains OS Command Injection vulnerability. An authenticated remote attacker with administrative privileges could potentially exploit the issue and execute commands on the system as the root user.
Dell Powerpath Management Appliance 3.1
Dell Powerpath Management Appliance 3.2
Dell Powerpath Management Appliance 3.3
Dell Powerpath Management Appliance 3.0
8.8
CVSSv3
CVE-2022-34448
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vulnerability. An unauthenticated non-privileged user could potentially exploit the issue and perform any privileged state-changing actions.
Dell Powerpath Management Appliance 3.1
Dell Powerpath Management Appliance 3.2
Dell Powerpath Management Appliance 3.3
Dell Powerpath Management Appliance 3.0
4.8
CVSSv3
CVE-2022-34451
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Stored Cross-site Scripting Vulnerability. An authenticated admin user could potentially exploit this vulnerability, to hijack user sessions or trick a victim application user into unknowingly...
Dell Powerpath Management Appliance 3.1
Dell Powerpath Management Appliance 3.2
Dell Powerpath Management Appliance 3.3
Dell Powerpath Management Appliance 3.0
7.5
CVSSv3
CVE-2016-6358
A vulnerability in local FTP to the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to cause a partial denial of service (DoS) condition when the FTP application unexpectedly quits. More Information: CSCux68539. Known Affected Releases: ...
Cisco Email Security Appliance 9.9.6-026
Cisco Email Security Appliance 9.7.2-054
Cisco Email Security Appliance 9.7.1-066
Cisco Email Security Appliance 9.7.2-046
Cisco Email Security Appliance 9.9 Base
Cisco Email Security Appliance 9.7.2-047
NA
CVE-2009-4455
The default configuration of Cisco ASA 5500 Series Adaptive Security Appliance (Cisco ASA) 7.0, 7.1, 7.2, 8.0, 8.1, and 8.2 allows portal traffic to access arbitrary backend servers, which might allow remote authenticated users to bypass intended access restrictions and access un...
Cisco Adaptive Security Appliance 5500 7.0
Cisco Adaptive Security Appliance 5500 7.1
Cisco Adaptive Security Appliance 5500 7.2
Cisco Adaptive Security Appliance 5500 8.2
Cisco Adaptive Security Appliance 5500 8.0
Cisco Adaptive Security Appliance 5500 8.1
7.5
CVSSv3
CVE-2016-1404
Cisco UCS Invicta 4.3, 4.5, and 5.0.1 on Invicta appliances and Invicta Scaling System uses the same hardcoded GnuPG encryption key across different customers' installations, which allows remote malicious users to defeat cryptographic protection mechanisms by sniffing networ...
Cisco Ucs Invicta C3124sa Appliance 4.5 Base
Cisco Ucs Invicta C3124sa Appliance 4.3 Base
Cisco Ucs Invicta C3124sa Appliance 4.3.1
Cisco Ucs Invicta C3124sa Appliance 4.5.0
Cisco Ucs Invicta C3124sa Appliance 5.0.1
Cisco Ucs Invicta C3124sa Appliance 5.0 Base
7.5
CVSSv3
CVE-2017-6750
A vulnerability in AsyncOS for the Cisco Web Security Appliance (WSA) could allow an unauthenticated, local malicious user to log in to the device with the privileges of a limited user or an unauthenticated, remote malicious user to authenticate to certain areas of the web GUI, a...
Cisco Web Security Appliance 10.1.1-235
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.5.1
Cisco Web Security Virtual Appliance 10.5 Base
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.1.1
Cisco Web Security Virtual Appliance 10.1 Base
5.4
CVSSv3
CVE-2017-6749
A vulnerability in the web-based management interface of Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. Affect...
Cisco Web Security Virtual Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.5.1
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.5.1-270
Cisco Web Security Virtual Appliance 10.1 Base
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.1-235
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Virtual Appliance 10.5 Base
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.1.1
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.0.0-233
NA
CVE-2008-2056
Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 8.0.x prior to 8.0(3)9 and 8.1.x prior to 8.1(1)1 allows remote malicious users to cause a denial of service (device reload) via a crafted Transport Layer Security (TLS) packet to the device interface.
Cisco Pix Security Appliance 8.1
Cisco Adaptive Security Appliance 8.1
Cisco Pix Security Appliance 8.0
Cisco Adaptive Security Appliance Software 8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »