Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firewall vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-2161
Kerio Personal Firewall (KPF) 2.1.4 and previous versions allows remote malicious users to cause a denial of service (hang and CPU consumption) via a SYN packet flood.
Kerio Personal Firewall 2.1
Kerio Personal Firewall 2.1.1
Kerio Personal Firewall 2.1.3
Kerio Personal Firewall 2.1.2
Kerio Personal Firewall 2.1.4
7.2
CVSSv3
CVE-2022-1807
Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 18.5 MR4 and version 19.0 MR1.
Sophos Firewall 19.0
Sophos Firewall 18.5
Sophos Firewall
NA
CVE-2008-6992
GreenSQL Firewall (greensql-fw), possibly prior to 0.9.2 or 0.9.4, allows remote malicious users to bypass the SQL injection protection mechanism via a WHERE clause containing an expression such as "x=y=z", which is successfully parsed by MySQL.
Greensql Greensql Firewall 0.3.4
Greensql Greensql Firewall
Greensql Greensql Firewall 0.3.5
Greensql Greensql Firewall 0.8.2
1 EDB exploit
NA
CVE-2000-0150
Check Point Firewall-1 allows remote malicious users to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt.
Checkpoint Firewall-1 3.0
Cisco Pix Firewall Software 4.1\\(6\\)
Cisco Pix Firewall Software 4.2\\(1\\)
Cisco Pix Firewall Software 4.2\\(2\\)
Cisco Pix Firewall Software 4.3
Cisco Pix Firewall Software 4.4\\(4\\)
Checkpoint Firewall-1 4.0
Cisco Pix Firewall Software 4.1\\(6b\\)
Cisco Pix Firewall Software 5.0
NA
CVE-2005-0311
Ingate Firewall 4.1.3 and previous versions does not terminate the PPTP session for an active user when the administrator disables that user from a resource, which could allow remote authenticated users to retain unauthorized access to resources.
Ingate Ingate Firewall 4.1.3
Ingate Ingate Firewall 3.2.1
Ingate Ingate Firewall 3.3.1
Ingate Ingate Firewall 3.2
NA
CVE-2002-1046
Dynamic VPN Configuration Protocol service (DVCP) in Watchguard Firebox firmware 5.x.x allows remote malicious users to cause a denial of service (crash) via a malformed packet containing tab characters to TCP port 4110.
Watchguard Firebox 5.0
Watchguard Soho Firewall 5.0.28
Watchguard Soho Firewall 5.0.29
Watchguard Soho Firewall 5.0.35
Watchguard Soho Firewall 5.0.31
Watchguard Soho Firewall 5.0.35a
NA
CVE-2008-2333
Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) prior to 3.5.11.025 allows remote malicious users to inject arbitrary web script or HTML via the email parameter.
Barracuda Networks Barracuda Spam Firewall 3.1.10
Barracuda Networks Barracuda Spam Firewall 3.3.03.055
Barracuda Networks Barracuda Spam Firewall 3.3.15.026
Barracuda Networks Barracuda Spam Firewall 3.1.18
Barracuda Networks Barracuda Spam Firewall 3.3.0.54
Barracuda Networks Barracuda Spam Firewall 3.4.10.102
Barracuda Networks Barracuda Spam Firewall
Barracuda Networks Barracuda Spam Firewall 3.1.16
Barracuda Networks Barracuda Spam Firewall 3.1.17
Barracuda Networks Barracuda Spam Firewall 3.3.3
Barracuda Networks Barracuda Spam Firewall 3.4
Barracuda Networks Barracuda Spam Firewall 3.3.01.001
Barracuda Networks Barracuda Spam Firewall 3.3.03.053
1 EDB exploit
NA
CVE-2010-1329
Imperva SecureSphere Web Application Firewall and Database Firewall 5.0.0.5082 up to and including 7.0.0.7078 allow remote malicious users to bypass intrusion-prevention functionality via a request that has an appended long string containing an unspecified manipulation.
Imperva Securesphere Web Application Firewall 6.0.5.6238
Imperva Securesphere Web Application Firewall 5.0.0.5082
Imperva Securesphere Web Application Firewall 6.0.6.6302
Imperva Securesphere Web Application Firewall 6.2.0.6442
Imperva Securesphere Web Application Firewall 6.2.0.6463
Imperva Securesphere Web Application Firewall 7.0.0.7061
Imperva Securesphere Web Application Firewall 6.0.5.6230
Imperva Securesphere Web Application Firewall 6.0.6.6274
Imperva Securesphere Database Firewall 7.0.0.7061
Imperva Securesphere Database Firewall 5.0.0.5082
Imperva Securesphere Database Firewall 6.0.6.6274
Imperva Securesphere Database Firewall 6.0.6.6302
Imperva Securesphere Database Firewall 6.2.0.6442
Imperva Securesphere Database Firewall 6.2.0.6463
Imperva Securesphere Database Firewall 6.0.5.6230
Imperva Securesphere Database Firewall 6.0.5.6238
Imperva Securesphere Web Application Firewall 6.0.4.6128
Imperva Securesphere Database Firewall 6.0.4.6128
Imperva Securesphere Database Firewall 7.0.0.7078
Imperva Securesphere Web Application Firewall 7.0.0.7078
NA
CVE-2000-1022
The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and previous versions does not properly restrict access to SMTP commands, which allows remote malicious users to execute restricted commands by sending a DATA command before sending the restricted commands.
Cisco Pix Firewall Software 5.1
Cisco Pix Firewall Software 5.2
Cisco Pix Firewall Software 4.2\\(1\\)
Cisco Pix Firewall Software 4.2\\(2\\)
Cisco Pix Firewall Software 4.2\\(5\\)
Cisco Pix Firewall Software 4.3
Cisco Pix Firewall Software 4.4\\(4\\)
Cisco Pix Firewall Software 5.0
1 EDB exploit
NA
CVE-2004-1022
Kerio Winroute Firewall prior to 6.0.7, ServerFirewall prior to 1.0.1, and MailServer prior to 6.0.5 use symmetric encryption for user passwords, which allows malicious users to decrypt the user database and obtain the passwords by extracting the secret key from within the softwa...
Kerio Kerio Mailserver 5.6.4
Kerio Kerio Mailserver 5.6.5
Kerio Kerio Mailserver 5.7.6
Kerio Kerio Mailserver 5.7.7
Kerio Kerio Mailserver 6.0.4
Kerio Serverfirewall 1.0
Kerio Winroute Firewall 5.0.7
Kerio Winroute Firewall 5.0.8
Kerio Winroute Firewall 5.1.5
Kerio Winroute Firewall 5.1.6
Kerio Winroute Firewall 6.0.2
Kerio Winroute Firewall 6.0.3
Kerio Kerio Mailserver 5.0
Kerio Kerio Mailserver 5.1
Kerio Kerio Mailserver 5.7.10
Kerio Kerio Mailserver 5.7.2
Kerio Kerio Mailserver 5.1.1
Kerio Kerio Mailserver 5.6.3
Kerio Kerio Mailserver 5.7.4
Kerio Kerio Mailserver 5.7.5
Kerio Kerio Mailserver 6.0.2
Kerio Kerio Mailserver 6.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »