Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios 7000 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-7871
Crypto-NAK packets in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to bypass authentication.
Ntp Ntp 4.2.5
Ntp Ntp 4.2.8
Ntp Ntp
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
9.8
CVSSv3
CVE-2015-7705
The rate limiting feature in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77 allows remote malicious users to have unspecified impact via a large number of crafted requests.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
Citrix Xenserver 7.0
Citrix Xenserver 6.0.2
Citrix Xenserver 6.5
Citrix Xenserver 6.2.0
Siemens Tim 4r-ie Firmware
Siemens Tim 4r-ie Dnp3 Firmware
9.8
CVSSv3
CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
8.8
CVSSv3
CVE-2020-3217
A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent malicious user to execute arbitrary code or cause a denial of...
Cisco Ios 15.2(4)ea
Cisco Ios 15.4(2)s2
Cisco Ios Xe 3.13.2s
Cisco Ios Xe 3.13.6s
Cisco Ios 15.4(2)s4
Cisco Ios Xe 3.14.4s
Cisco Ios 15.2(2)sy
Cisco Ios 15.6(2)sp2
Cisco Ios Xe 3.7.4e
Cisco Ios Xe 3.15.1cs
Cisco Ios 15.6(2)t3
Cisco Ios Xe 3.9.0e
Cisco Ios 15.6(1)t2
Cisco Ios 15.2(3)e2
Cisco Ios Xe 3.13.4s
Cisco Ios 15.5(3)s1a
Cisco Ios 15.5(3)m4a
Cisco Ios 15.2(4)ea4
Cisco Ios Xe 16.2.1
Cisco Ios 15.5(1)t3
Cisco Ios Xe 16.1.3
Cisco Ios Xe 3.13.0s
8.8
CVSSv3
CVE-2020-3172
A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent malicious user to execute arbitrary code as root or cause a denial of service (DoS) condition on an affected device. The vulnerability ...
Cisco Firepower Extensible Operating System
Cisco Ucs Manager
Cisco Nx-os -
Cisco Nx-os 5.2(1)sv5(1.2)
Cisco Nx-os 7.3(5)n1(1)
Cisco Nx-os 7.3(0)d1(0.140)
Cisco Nx-os 7.3(0)d1(0.146)
Cisco Nx-os 7.0(3)i3(0.191)
Cisco Nx-os 13.2(7.230)
Cisco Nx-os 14.2(1i)
1 Github repository
8.8
CVSSv3
CVE-2015-7849
Use-after-free vulnerability in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
8.8
CVSSv3
CVE-2015-7854
Buffer overflow in the password management functionality in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
8.6
CVSSv3
CVE-2020-3228
A vulnerability in Security Group Tag Exchange Protocol (SXP) in Cisco IOS Software, Cisco IOS XE Software, and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to cause the affected device to reload, resulting in a denial of service (DoS) condition. The...
Cisco Ios 15.2(4)ea
Cisco Ios Xe 3.13.2s
Cisco Ios Xe 3.10.6s
Cisco Ios 15.1(2)sy10
Cisco Ios Xe 3.6.5be
Cisco Ios Xe 3.13.6s
Cisco Ios 15.5(1)t1
Cisco Ios 15.2(2)e5b
Cisco Ios Xe 3.14.4s
Cisco Ios 15.2(2)sy
Cisco Ios Xe 3.7.4e
Cisco Ios Xe 3.15.1cs
Cisco Ios 15.6(2)t3
Cisco Ios Xe 3.9.0e
Cisco Ios 15.6(1)t2
Cisco Ios 15.2(3)e2
Cisco Ios Xe 3.13.4s
Cisco Ios 15.5(3)m4a
Cisco Ios 15.2(4)ea4
Cisco Ios Xe 16.2.1
Cisco Ios 15.5(1)t3
Cisco Ios Xe 16.1.3
7.5
CVSSv3
CVE-2017-3730
In OpenSSL 1.1.0 prior to 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0a
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Agile Engineering Data Management 6.1.3
Oracle Agile Engineering Data Management 6.2.0
Oracle Jd Edwards World Security A9.1
Oracle Jd Edwards World Security A9.2
Oracle Jd Edwards World Security A9.3
Oracle Jd Edwards World Security A9.4
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Communications Eagle Lnp Application Processor 10.0
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Communications Application Session Controller 3.7.1
Oracle Communications Application Session Controller 3.8.0
1 EDB exploit
1 Github repository
1 Article
7.5
CVSSv3
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0a
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »