Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firewall vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2018-15904
A10 ACOS Web Application Firewall (WAF) 2.7.1 and 2.7.2 prior to 2.7.2-P12, 4.1.0 prior to 4.1.0-P11, 4.1.1 prior to 4.1.1-P8, and 4.1.2 prior to 4.1.2-P4 mishandles the configured rules for blocking SQL injection attacks, aka A10-2017-0008.
A10networks Acos Web Application Firewall 4.1.2
A10networks Acos Web Application Firewall 4.1.0
A10networks Acos Web Application Firewall 2.7.2
A10networks Acos Web Application Firewall 4.1.1
A10networks Acos Web Application Firewall 2.7.1
445
VMScore
CVE-2002-1937
Symantec Firewall/VPN Appliance 100 through 200R hardcodes the administrator's MAC address inside the firewall's configuration, which allows remote malicious users to spoof the administrator's MAC address and perform an ARP poisoning man-in-the-middle attack to obt...
Symantec Firewall Vpn Appliance 100
Symantec Firewall Vpn Appliance 200
Symantec Firewall Vpn Appliance 200r
445
VMScore
CVE-2007-1330
Comodo Firewall Pro (CFP) (formerly Comodo Personal Firewall) 2.4.18.184 and previous versions allows local users to bypass driver protections on the HKLM\SYSTEM\Software\Comodo\Personal Firewall registry key by guessing the name of a named pipe under \Device\NamedPipe\OLE and at...
Comodo Comodo Firewall Pro 2.4.16.174
Comodo Comodo Firewall Pro 2.4.17.183
Comodo Comodo Firewall Pro 2.4.18.184
1 EDB exploit
445
VMScore
CVE-2006-0487
Multiple unspecified vulnerabilities in Tumbleweed MailGate Email Firewall (EMF) 6.x allow remote malicious users to (1) trigger temporarily incorrect processing of an e-mail message under "extremely heavy loads" and (2) cause an "increased number of missed spam&qu...
Tumbleweed Mailgate Email Firewall 6.0
Tumbleweed Mailgate Email Firewall 6.1
Tumbleweed Mailgate Email Firewall 6.2
668
VMScore
CVE-2004-0190
Symantec FireWall/VPN Appliance model 200 records a cleartext password for the password administration page, which may be cached on the administrator's local system or in a proxy, which allows malicious users to steal the password and gain privileges.
Symantec Firewall Vpn Appliance 100
Symantec Firewall Vpn Appliance 200
Symantec Firewall Vpn Appliance 200r
641
VMScore
CVE-2006-3973
My Firewall Plus 5.0 Build 1119 does not verify if explorer.exe is running before launching iexplore.exe from the "Test Your Firewall" feature, which allows local users to gain SYSTEM privileges.
My Firewall Plus My Firewall Plus 5.0 Build 1119
605
VMScore
CVE-2019-14681
The Deny All Firewall plugin prior to 1.1.7 for WordPress allows wp-admin/options-general.php?page=daf_settings&daf_remove=true CSRF.
Deny All Firewall Project Deny All Firewall
668
VMScore
CVE-2002-0538
FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0 rewrites an FTP server's "FTP PORT" responses in a way that allows remote malicious users to redirect FTP data connections to arbitrary ports, a variant of the "FTP bounce" vulnerability.
Symantec Enterprise Firewall 6.5.2
Symantec Enterprise Firewall 7.0
Symantec Raptor Firewall 6.5.3
Symantec Raptor Firewall 6.5
Symantec Velociraptor 1.x
Symantec Gateway Security 1.0
445
VMScore
CVE-2002-1203
IBM SecureWay Firewall prior to 4.2.2 performs extra processing before determining that a packet is invalid and dropping it, which allows remote malicious users to cause a denial of service (resource exhaustion) via a flood of malformed TCP packets without any flags set.
Ibm Secureway Firewall 4.2
Ibm Secureway Firewall 4.2.1
505
VMScore
CVE-2003-0757
Check Point FireWall-1 4.0 and 4.1 before SP5 allows remote malicious users to obtain the IP addresses of internal interfaces via certain SecuRemote requests to TCP ports 256 or 264, which leaks the IP addresses in a reply packet.
Checkpoint Firewall-1 4.0
Checkpoint Firewall-1 4.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »