Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
information disclosure vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2017-6681
A vulnerability in the AutoVNF VNFStagingView class of Cisco Ultra Services Framework could allow an unauthenticated, remote malicious user to execute a relative path traversal attack, enabling an malicious user to read sensitive files on the system. More Information: CSCvc76662....
Cisco Ultra Services Framework 21.0.0
357
VMScore
CVE-2022-20782
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to obtain sensitive information from an affected device. This vulnerability is due to improper enforcement of administrative privilege...
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
356
VMScore
CVE-2021-34702
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to obtain sensitive information. This vulnerability is due to improper enforcement of administrator privilege levels for low-value sen...
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine
605
VMScore
CVE-2018-0460
A vulnerability in the REST API of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to read any file on an affected system. The vulnerability is due to insufficient authorization and parameter validation checks. An attacker ...
Cisco Network Functions Virtualization Infrastructure -
187
VMScore
CVE-2017-6696
A vulnerability in the file system of Cisco Elastic Services Controllers could allow an authenticated, local malicious user to gain access to sensitive user credentials that are stored in an affected system. More Information: CSCvd73677. Known Affected Releases: 2.3(2).
Cisco Elastic Services Controller 2.3\\(2\\)
356
VMScore
CVE-2017-6772
A vulnerability in Cisco Elastic Services Controller (ESC) could allow an authenticated, remote malicious user to view sensitive information. The vulnerability is due to insufficient protection of sensitive data. An attacker could exploit this vulnerability by authenticating to t...
Cisco Elastic Services Controller 2.3\\(2\\)
409
VMScore
CVE-2017-6786
A vulnerability in Cisco Elastic Services Controller could allow an authenticated, local, unprivileged malicious user to access sensitive information, including credentials for system accounts, on an affected system. The vulnerability is due to improper protection of sensitive lo...
Cisco Elastic Services Controller 2.2\\(9.76\\)
NA
CVE-2023-20111
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to access sensitive information. This vulnerability is due to the improper storage of sensitive information within the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
445
VMScore
CVE-2017-6642
A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an unauthenticated, remote malicious user to access sensitive information on an affected system. The vulnerability exists because the affected software does not sufficiently protect se...
Cisco Remote Expert Manager 11.0.0
445
VMScore
CVE-2017-6644
A vulnerability in the web interface of Cisco Remote Expert Manager Software 11.0.0 could allow an unauthenticated, remote malicious user to access sensitive information on an affected system. The vulnerability exists because the affected software does not sufficiently protect se...
Cisco Remote Expert Manager 11.0.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »