Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco security device manager vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2010-0594
Cross-site scripting (XSS) vulnerability in Cisco Router and Security Device Manager (SDM) allows remote malicious users to inject arbitrary web script or HTML via unknown vectors, aka Bug ID CSCtb38467.
Cisco Router And Security Device Manager
Cisco Router And Security Device Manager 2.5
570
VMScore
CVE-2007-0397
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.2.3 and Adaptive Security Device Manager (ASDM) prior to 5.2(2.54) do not validate the SSL/TLS certificates or SSH public keys when connecting to devices, which allows remote malicious users to spoof...
Cisco Security Monitoring Analysis And Response System 4.2.3
Cisco Adaptive Security Appliance Device Manager 5.2.53
570
VMScore
CVE-2020-27130
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote malicious user to gain access to sensitive information. The vulnerability is due to improper validation of directory traversal character sequences within requests to an affected device. An attacker c...
Cisco Security Manager
892
VMScore
CVE-2020-27131
Multiple vulnerabilities in the Java deserialization function that is used by Cisco Security Manager could allow an unauthenticated, remote malicious user to execute arbitrary commands on an affected device. These vulnerabilities are due to insecure deserialization of user-suppli...
Cisco Security Manager
578
VMScore
CVE-2014-3326
SQL injection vulnerability in the web framework in Cisco Security Manager 4.5 and 4.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCup26957.
Cisco Security Manager 4.6
Cisco Security Manager 4.5
383
VMScore
CVE-2014-3364
Multiple cross-site scripting (XSS) vulnerabilities in the web framework in Cisco Prime Security Manager (aka PRSM) 9.2.1-2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via a (1) Access Policies or (2) Device Summary Dashboard paramete...
Cisco Prime Security Manager
756
VMScore
CVE-2016-1301
The RBAC implementation in Cisco ASA-CX Content-Aware Security software prior to 9.3.1.1(112) and Cisco Prime Security Manager (PRSM) software prior to 9.3.1.1(112) allows remote authenticated users to change arbitrary passwords via a crafted HTTP request, aka Bug ID CSCuo94842.
Cisco Asa Cx Context-aware Security Software 9.1.3-10
Cisco Asa Cx Context-aware Security Software 9.1.2-42
Cisco Asa Cx Context-aware Security Software 9.1.2-29
Cisco Prime Security Manager 9.0.1-40
Cisco Prime Security Manager 9.0.2-68
Cisco Prime Security Manager 9.1.3-13
Cisco Prime Security Manager 9.2.1-1
Cisco Asa Cx Context-aware Security Software 9.1.3-8
Cisco Asa Cx Context-aware Security Software 9.1.3-13
Cisco Asa Cx Context-aware Security Software 9.0.1
Cisco Prime Security Manager 9.0.0
Cisco Prime Security Manager 9.1.3-8
Cisco Prime Security Manager 9.1.3-10
Cisco Asa Cx Context-aware Security Software 9.2.1-4
Cisco Asa Cx Context-aware Security Software 9.2.1-3
Cisco Asa Cx Context-aware Security Software 9.0 Base
Cisco Asa Cx Context-aware Security Software 9.0.2-68
Cisco Prime Security Manager 9.1.0
Cisco Prime Security Manager 9.2.0
Cisco Prime Security Manager 9.2.1-2
Cisco Asa Cx Context-aware Security Software 9.2.1-2
Cisco Asa Cx Context-aware Security Software 9.2.1-1
445
VMScore
CVE-2014-0743
The Certificate Authority Proxy Function (CAPF) component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows remote malicious users to bypass authentication and modify registered-device information via crafted data, aka Bug ID CSCum95468.
Cisco Unified Communications Manager 4.1\\(3\\)sr3
Cisco Unified Communications Manager 4.1\\(3\\)sr4
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager
Cisco Unified Communications Manager 3.3\\(5\\)
Cisco Unified Communications Manager 3.3\\(5\\)sr1
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.1\\(3\\)
Cisco Unified Communications Manager 4.1\\(3\\)sr2
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager 3.3\\(5\\)sr2a
Cisco Unified Communications Manager 4.1\\(3\\)sr1
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.2.3sr2
694
VMScore
CVE-2018-15383
A vulnerability in the cryptographic hardware accelerator driver of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause an affected device to reload, resulting in a tempo...
Cisco Firepower Threat Defense 6.0.1
Cisco Firepower Threat Defense 6.2.0
Cisco Firepower Threat Defense 6.1.0
Cisco Firepower Threat Defense 6.2.2
Cisco Firepower Threat Defense 6.2.3
Cisco Firepower Threat Defense 6.0
Cisco Adaptive Security Appliance Software 9.5
Cisco Adaptive Security Appliance Software 9.4
Cisco Adaptive Security Appliance Software 9.3
Cisco Adaptive Security Appliance Software 9.6
Cisco Adaptive Security Appliance Software 9.6\\(43\\)
Cisco Adaptive Security Appliance Software 9.7
Cisco Adaptive Security Appliance Software 9.8
Cisco Adaptive Security Appliance Software 9.9\\(28\\)
Cisco Adaptive Security Appliance Software 9.9
383
VMScore
CVE-2018-0223
A vulnerability in DesktopServlet in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based interface. The vulnerability is due to ...
Cisco Security Manager 4.9\\(0\\)qa99
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »