Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

cisco ace module vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv3

CVE-2013-1202

Cisco ACE A2(3.6) allows log retention DoS.
Cisco Ace Application Control Engine Module A2 3.6Cisco Ace Application Control Engine Module A2 3.6a
7.5
CVSSv3

CVE-2016-6422

Cisco IOS 12.2(33)SXJ9 on Supervisor Engine 32 and 720 modules for 6500 and 7600 devices mishandles certain operators, flags, and keywords in TCAM share ACLs, which allows remote malicious users to bypass intended access restrictions by sending packets that should have been recog...
Cisco Ios 12.2(33)sxj9
7.5
CVSSv3

CVE-2016-6399

Cisco ACE30 Application Control Engine Module through A5 3.3 and ACE 4700 Application Control Engine appliances through A5 3.3 allow remote malicious users to cause a denial of service (device reload) via crafted (1) SSL or (2) TLS packets, aka Bug ID CSCvb16317.
Cisco Ace Application Control Engine Module A3 2.2Cisco Ace 4700 Series Application Control Engine Appliance A3 2.3Cisco Ace 4700 Series Application Control Engine Appliance A3 2.0Cisco Ace 4700 Series Application Control Engine Appliance A3 2.5Cisco Ace 4700 Series Application Control Engine Appliance A4 1.0Cisco Ace 4700 Series Application Control Engine Appliance A5 3.3Cisco Ace 4700 Series Application Control Engine Appliance A4 1.1Cisco Ace Application Control Engine Module A4 2.0Cisco Ace Application Control Engine Module A5 3.3Cisco Ace 4700 Series Application Control Engine Appliance A5(1.1)Cisco Ace Application Control Engine Module A1 8.0aCisco Ace 4700 Series Application Control Engine Appliance A5(3.0)Cisco Ace Application Control Engine Module A3 2.5Cisco Ace Application Control Engine Module A1 8.0Cisco Ace Application Control Engine Module A5 2.0Cisco Ace Application Control Engine Module A3 1.0Cisco Ace 4700 Series Application Control Engine Appliance A1 7bCisco Ace Application Control Engine Module A4 1.1Cisco Ace 4700 Series Application Control Engine Appliance A1 7aCisco Ace Application Control Engine Module A1 7bCisco Ace 4700 Series Application Control Engine Appliance A3 1.0Cisco Ace Application Control Engine Module A4 2.1a
7.5
CVSSv3

CVE-2016-2180

The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL up to and including 1.0.2h allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a cr...
Openssl Openssl 1.0.1mOpenssl Openssl 1.0.2aOpenssl Openssl 1.0.1jOpenssl Openssl 1.0.1hOpenssl Openssl 1.0.2eOpenssl Openssl 1.0.1rOpenssl Openssl 1.0.2bOpenssl Openssl 1.0.1cOpenssl Openssl 1.0.1gOpenssl Openssl 1.0.2gOpenssl Openssl 1.0.1aOpenssl Openssl 1.0.2hOpenssl Openssl 1.0.1dOpenssl Openssl 1.0.1tOpenssl Openssl 1.0.2cOpenssl Openssl 1.0.1pOpenssl Openssl 1.0.1kOpenssl Openssl 1.0.1bOpenssl Openssl 1.0.1nOpenssl Openssl 1.0.1qOpenssl Openssl 1.0.1eOpenssl Openssl 1.0.1l
6.5
CVSSv3

CVE-2015-7973

NTP prior to 4.2.8p6 and 4.3.x prior to 4.3.90, when configured in broadcast mode, allows man-in-the-middle malicious users to conduct replay attacks by sniffing the network.
Ntp Ntp 4.2.8Ntp NtpSiemens Tim 4r-ie FirmwareSiemens Tim 4r-ie Dnp3 FirmwareFreebsd Freebsd 9.3Freebsd Freebsd 10.2Freebsd Freebsd 10.1Freebsd FreebsdNetapp Oncommand Balance -Netapp Clustered Data Ontap -Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 12.04
6.2
CVSSv3

CVE-2015-7975

The nextvar function in NTP prior to 4.2.8p6 and 4.3.x prior to 4.3.90 does not properly validate the length of its input, which allows an malicious user to cause a denial of service (application crash).
Ntp Ntp 4.3.80Ntp Ntp 4.3.51Ntp Ntp 4.3.17Ntp Ntp 4.3.30Ntp Ntp 4.3.74Ntp Ntp 4.3.67Ntp Ntp 4.3.14Ntp Ntp 4.3.27Ntp Ntp 4.3.13Ntp Ntp 4.3.36Ntp Ntp 4.3.16Ntp Ntp 4.3.35Ntp Ntp 4.3.53Ntp Ntp 4.3.64Ntp Ntp 4.3.20Ntp Ntp 4.3.40Ntp Ntp 4.3.68Ntp Ntp 4.3.46Ntp Ntp 4.3.77Ntp Ntp 4.3.1Ntp Ntp 4.3.6Ntp Ntp 4.3.2
5.9
CVSSv3

CVE-2017-15533

Symantec SSL Visibility (SSLV) 3.8.4FC, 3.10 before 3.10.4.1, 3.11, and 3.12 before 3.12.2.1 are vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. All affected SSLV versions act as weak oracles according the oracle classification used in the ROBOT resea...
Broadcom Ssl Visibility Appliance 3.12Broadcom Ssl Visibility Appliance 3.11Broadcom Ssl Visibility Appliance 3.10Broadcom Ssl Visibility Appliance 3.8.4fc
5.9
CVSSv3

CVE-2017-17428

Cavium Nitrox SSL, Nitrox V SSL, and TurboSSL software development kits (SDKs) allow remote malicious users to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack.
Cavium Nitrox V Ssl SdkCavium Nitrox Ssl SdkCavium Turbossl SdkCavium Octeon Ssl SdkCavium Octeon SdkCisco Webex Meetings T31Cisco Webex Meetings T32Cisco Webex Conect Im 7.24.1Cisco Ace4710 Application Control Engine Firmware 3.0(0)a5(2.0)Cisco Ace4710 Application Control Engine Firmware 3.0(0)a5(3.0)Cisco Ace4710 Application Control Engine Firmware 3.0(0)a5(3.5)Cisco Ace30 Application Control Engine Module Firmware 3.0(0)a5(2.0)Cisco Ace30 Application Control Engine Module Firmware 3.0(0)a5(3.0)Cisco Ace30 Application Control Engine Module Firmware 3.0(0)a5(3.5)Cisco Adaptive Security Appliance 5520 Firmware 9.1(7.16)Cisco Adaptive Security Appliance 5540 Firmware 9.1(7.16)Cisco Adaptive Security Appliance 5550 Firmware 9.1(7.16)Cisco Adaptive Security Appliance 5510 Firmware 9.1(7.16)Cisco Adaptive Security Appliance 5505 Firmware 9.1(7.16)
5.9
CVSSv3

CVE-2017-12373

A vulnerability in the TLS protocol implementation of legacy Cisco ASA 5500 Series (ASA 5505, 5510, 5520, 5540, and 5550) devices could allow an unauthenticated, remote malicious user to access sensitive information, aka a Return of Bleichenbacher's Oracle Threat (ROBOT) att...
Cisco Adaptive Security Appliance 5505 Firmware -Cisco Adaptive Security Appliance 5510 Firmware -Cisco Adaptive Security Appliance 5520 Firmware -Cisco Adaptive Security Appliance 5540 Firmware -Cisco Adaptive Security Appliance 5550 Firmware -
5.3
CVSSv3

CVE-2015-8139

ntpq in NTP prior to 4.2.8p7 allows remote malicious users to obtain origin timestamps and then impersonate peers via unspecified vectors.
Ntp Ntp
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316firmwareCVE-2024-30078CVE-2024-5995remote code executionlogic flawCVE-2024-20693CVE-2024-37315CVE-2024-5464
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook