Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ipsec client vulnerabilities and exploits
(subscribe to this query)
694
VMScore
CVE-2010-0149
Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.2 prior to 7.2(4.46), 8.0 prior to 8.0(4.38), 8.1 prior to 8.1(2.29), and 8.2 prior to 8.2(1.5); and Cisco PIX 500 Series Security Appliance; allows remote malicious users to cause a denial of servic...
Cisco Asa 5500 8.2
Cisco Pix 500
Cisco Asa 5500 8.0
Cisco Asa 5500 8.1
Cisco Asa 5500 7.2
Cisco Asa 5500 7.1
445
VMScore
CVE-2002-1103
Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x prior to 3.5.5, allows remote malicious users to cause a denial of service via (1) malformed or (2) large ISAKMP packets.
Cisco Vpn 3000 Concentrator Series Software 2.5.2.a
Cisco Vpn 3000 Concentrator Series Software 2.5.2.b
Cisco Vpn 3000 Concentrator Series Software 2.5.2.c
Cisco Vpn 3000 Concentrator Series Software 2.5.2.d
Cisco Vpn 3000 Concentrator Series Software 2.5.2.f
Cisco Vpn 3000 Concentrator Series Software 3.5.2
Cisco Vpn 3000 Concentrator Series Software 3.5.3
Cisco Vpn 3000 Concentrator Series Software 3.5.4
Cisco Vpn 3000 Concentrator Series Software 3.6\\(rel\\)
Cisco Vpn 3000 Concentrator Series Software 3.0
Cisco Vpn 3000 Concentrator Series Software 3.0.3.a
Cisco Vpn 3000 Concentrator Series Software 3.1.4
Cisco Vpn 3000 Concentrator Series Software 3.5.1
Cisco Vpn 3000 Concentrator Series Software 3.0.4
Cisco Vpn 3000 Concentrator Series Software 3.1
Cisco Vpn 3000 Concentrator Series Software 3.1\\(rel\\)
Cisco Vpn 3000 Concentrator Series Software 3.1.1
Cisco Vpn 3000 Concentrator Series Software 2.0
Cisco Vpn 3000 Concentrator Series Software 3.0\\(rel\\)
Cisco Vpn 3000 Concentrator Series Software 3.0.3.b
Cisco Vpn 3000 Concentrator Series Software 3.1.2
Cisco Vpn 3000 Concentrator Series Software 3.5\\(rel\\)
445
VMScore
CVE-2015-8023
The server implementation of the EAP-MSCHAPv2 protocol in the eap-mschapv2 plugin in strongSwan 4.2.12 up to and including 5.x prior to 5.3.4 does not properly validate local state, which allows remote malicious users to bypass authentication via an empty Success message in respo...
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Strongswan Strongswan 5.2.3
Strongswan Strongswan 4.3.7
Strongswan Strongswan 4.2.12
Strongswan Strongswan 5.1.2
Strongswan Strongswan 4.2.16
Strongswan Strongswan 4.5.3
Strongswan Strongswan 4.5.2
Strongswan Strongswan 5.0.1
Strongswan Strongswan 5.3.2
Strongswan Strongswan 4.4.0
Strongswan Strongswan 5.2.2
Strongswan Strongswan 5.1.0
Strongswan Strongswan 4.5.1
Strongswan Strongswan 4.2.14
Strongswan Strongswan 4.3.5
Strongswan Strongswan 5.2.0
Strongswan Strongswan 5.1.3
Strongswan Strongswan 4.3.2
Strongswan Strongswan 4.6.4
694
VMScore
CVE-2015-6327
The IKEv1 implementation in Cisco Adaptive Security Appliance (ASA) software 7.2 and 8.2 prior to 8.2(5.58), 8.3 and 8.4 prior to 8.4(7.29), 8.5 up to and including 8.7 prior to 8.7(1.17), 9.0 prior to 9.0(4.37), 9.1 prior to 9.1(6.8), 9.2 prior to 9.2(4), and 9.3 prior to 9.3(3)...
Cisco Adaptive Security Appliance Software 9.3.2
Cisco Adaptive Security Appliance Software 9.1.1.4
Cisco Adaptive Security Appliance Software 9.1.4
Cisco Adaptive Security Appliance Software 8.6.1.12
Cisco Adaptive Security Appliance Software 9.2.2.7
Cisco Adaptive Security Appliance Software 9.1.5.21
Cisco Adaptive Security Appliance Software 9.1.3
Cisco Adaptive Security Appliance Software 9.1.2
Cisco Adaptive Security Appliance Software 9.2.3
Cisco Adaptive Security Appliance Software 9.3.1.1
Cisco Adaptive Security Appliance Software 9.1.1
Cisco Adaptive Security Appliance Software 9.2.2.8
Cisco Adaptive Security Appliance Software 9.3.1
Cisco Adaptive Security Appliance Software 9.1.2.8
Cisco Adaptive Security Appliance Software 9.1.5.15
Cisco Adaptive Security Appliance Software 9.1.5.10
Cisco Adaptive Security Appliance Software 9.2.1
Cisco Adaptive Security Appliance Software 9.3.2.2
Cisco Adaptive Security Appliance Software 9.1.5
Cisco Adaptive Security Appliance Software 9.2.2.4
Cisco Adaptive Security Appliance Software 9.1.5.12
Cisco Adaptive Security Appliance Software 9.1.3.2
445
VMScore
CVE-2020-25645
A flaw was found in the Linux kernel in versions prior to 5.9-rc7. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone between the two endpoints to read the traffic...
Linux Linux Kernel
Linux Linux Kernel 5.9.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire \\& Hci Storage Node -
Opensuse Leap 15.1
Opensuse Leap 15.2
Netapp Hci Compute Node Bios -
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 20.04
410
VMScore
CVE-2022-27666
A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat.
Linux Linux Kernel
Linux Linux Kernel 5.17
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Redhat Virtualization 4.0
Redhat Enterprise Linux 8.0
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
3 Github repositories
694
VMScore
CVE-2013-1059
net/ceph/auth_none.c in the Linux kernel up to and including 3.10 allows remote malicious users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via an auth_reply message that triggers an attempted build_request op...
Linux Linux Kernel 3.10
Linux Linux Kernel
Canonical Ubuntu Linux 12.04
668
VMScore
CVE-2020-25643
A flaw was found in the HDLC_PPP module of the Linux kernel in versions prior to 5.9-rc7. Memory corruption and a read overflow is caused by improper input validation in the ppp_cp_parse_cr function which can cause the system to crash or cause a denial of service. The highest thr...
Linux Linux Kernel 5.9.0
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Opensuse Leap 15.1
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.2
Netapp H410c Firmware -
Starwindsoftware Starwind Virtual San V8
445
VMScore
CVE-2003-0147
OpenSSL does not use RSA blinding by default, which allows local and remote malicious users to obtain the server's private key by determining factors using timing differences on (1) the number of extra reductions during Montgomery reduction, and (2) the use of different inte...
Openpkg Openpkg 1.2
Openssl Openssl 0.9.6
Openssl Openssl 0.9.6h
Openssl Openssl 0.9.6i
Openssl Openssl 0.9.7
Stunnel Stunnel 3.15
Stunnel Stunnel 3.16
Stunnel Stunnel 3.7
Stunnel Stunnel 3.8
Openssl Openssl 0.9.6c
Openssl Openssl 0.9.6d
Stunnel Stunnel 3.11
Stunnel Stunnel 3.12
Stunnel Stunnel 3.19
Stunnel Stunnel 3.20
Stunnel Stunnel 4.01
Stunnel Stunnel 4.02
Openpkg Openpkg
Openpkg Openpkg 1.1
Openssl Openssl 0.9.6e
Openssl Openssl 0.9.6g
Stunnel Stunnel 3.13
187
VMScore
CVE-2022-28356
In the Linux kernel prior to 5.17.1, a refcount leak bug was found in net/llc/af_llc.c.
Linux Linux Kernel
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »