Vulmon Recent Vulnerabilities Trends Blog About Contact

privilege escalation vulnerabilities and exploits

(subscribe to this query)

9.8
CVSSv3
CVE-2018-13052
In CyberArk Endpoint Privilege Manager (formerly Viewfinity), Privilege Escalation is possible if the attacker has one process that executes as Admin....
Cyberark Endpoint Privilege Manager -
NA
CVE-2010-0572
Cisco Digital Media Manager (DMM) before 5.2 allows remote authenticated users to discover Cisco Digital Media Player credentials via vectors related to reading a (1) error log or (2) stack trace, aka Bug ID CSCtc46050....
Cisco Digital Media Manager 5.0Cisco Digital Media Manager 5.0.1Cisco Digital Media Manager 5.0.2Cisco Digital Media Manager 5.0.3Cisco Digital Media Manager
NA
CVE-2010-0570
Cisco Digital Media Manager (DMM) 5.0.x and 5.1.x has a default password for the Tomcat administration account, which makes it easier for remote attackers to execute arbitrary code via a crafted web application, aka Bug ID CSCta03378....
Cisco Digital Media Manager 5.0Cisco Digital Media Manager 5.0.1Cisco Digital Media Manager 5.0.2Cisco Digital Media Manager 5.0.3Cisco Digital Media Manager 5.1
NA
CVE-2010-0571
Unspecified vulnerability in Cisco Digital Media Manager (DMM) 5.0.x and 5.1.x allows remote authenticated users to gain privileges via unknown vectors, and consequently execute arbitrary code via a crafted web application, aka Bug ID CSCtc46008....
Cisco Digital Media Manager 5.0Cisco Digital Media Manager 5.0.1Cisco Digital Media Manager 5.0.2Cisco Digital Media Manager 5.0.3Cisco Digital Media Manager 5.1
NA
CVE-2006-1960
Cross-site scripting (XSS) vulnerability in the appliance web user interface in Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express before 2.13 allows remote attackers to inject arbitrary web script or HTML, possibly via the displayMsg parameter to...
Cisco Wireless Lan Solution Engine 2.0Cisco Wireless Lan Solution Engine 2.1Cisco Wireless Lan Solution Engine 2.2Cisco Wireless Lan Solution Engine 2.3Cisco Wireless Lan Solution Engine 2.4Cisco Wireless Lan Solution Engine 2.5Cisco Wireless Lan Solution Engine 2.6Cisco Wireless Lan Solution Engine 2.7Cisco Wireless Lan Solution Engine 2.8Cisco Wireless Lan Solution Engine 2.9Cisco Wireless Lan Solution Engine 2.10Cisco Wireless Lan Solution Engine 2.11Cisco Wireless Lan Solution Engine 2.12Cisco Wireless Lan Solution Engine 2.13
NA
CVE-2013-1191
Cisco NX-OS 6.1 before 6.1(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via crafted SSH key data in an SSH session to a management interface, aka Bug ID CSCud88400....
Cisco Nx-os 6.1Cisco Nx-os 6.1\\(1\\)Cisco Nx-os 6.1\\(2\\)Cisco Nx-os 6.1\\(3\\)Cisco Nx-os 6.1\\(4\\)Cisco Nx-os 6.1\\(4a\\)Cisco Nexus 7000 -Cisco Nexus 7000 10-slot -Cisco Nexus 7000 18-slot -Cisco Nexus 7000 9-slot -
NA
CVE-2014-2200
Cisco NX-OS 5.0 before 5.0(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via an SSH session to a management interface, aka Bug ID CSCti11629....
Cisco Nx-os 5.0\\(3\\)n1\\(1\\)Cisco Nx-os 5.0\\(3\\)n1\\(1a\\)Cisco Nx-os 5.0\\(3\\)n1\\(1b\\)Cisco Nx-os 5.0\\(3\\)n1\\(1c\\)Cisco Nx-os 5.0\\(3\\)n2\\(1\\)Cisco Nx-os 5.0\\(3\\)n2\\(2\\)Cisco Nx-os 5.0\\(3\\)n2\\(2a\\)Cisco Nx-os 5.0\\(3\\)n2\\(2b\\)Cisco Nx-os 5.0\\(3\\)u1\\(1a\\)Cisco Nx-os 5.0\\(3\\)u1\\(1b\\)Cisco Nx-os 5.0\\(3\\)u1\\(1d\\)Cisco Nx-os 5.0\\(3\\)u1\\(2\\)Cisco Nx-os 5.0\\(3\\)u1\\(2a\\)Cisco Nx-os 5.0\\(3\\)u2\\(1\\)Cisco Nx-os 5.0\\(3\\)u2\\(2\\)Cisco Nx-os 5.0\\(3\\)u2\\(2a\\)Cisco Nx-os 5.0\\(3\\)u2\\(2b\\)Cisco Nx-os 5.0\\(3\\)u2\\(2c\\)Cisco Nx-os 5.0\\(3\\)u2\\(2d\\)Cisco Nx-os 5.0\\(3\\)u3\\(1\\)Cisco Nx-os 5.0\\(3\\)u3\\(2\\)Cisco Nx-os 5.0\\(3\\)u3\\(2a\\)Cisco Nx-os 5.0\\(3\\)u3\\(2b\\)Cisco Nx-os 5.0\\(3\\)u4\\(1\\)Cisco Nx-os 5.0\\(3\\)u5\\(1\\)Cisco Nx-os 5.0\\(3\\)u5\\(1a\\)Cisco Nx-os 5.0\\(3\\)u5\\(1b\\)Cisco Nx-os 5.0\\(3\\)u5\\(1c\\)Cisco Nx-os 5.0\\(3\\)u5\\(1d\\)Cisco Nx-os 5.0\\(3\\)u5\\(1e\\)
NA
CVE-2014-2201
The Message Transfer Service (MTS) in Cisco NX-OS before 6.2(7) on MDS 9000 devices and 6.0 before 6.0(2) on Nexus 7000 devices allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a large volume of crafted traffic, aka Bug ID...
Cisco Nx-os 6.0\\(1\\)Cisco Nexus 7000 -Cisco Nexus 7000 10-slot -Cisco Nexus 7000 18-slot -Cisco Nexus 7000 9-slot -Cisco Nx-os 6.2\\(1\\)Cisco Nx-os 6.2\\(1n\\)Cisco Nx-os 6.2\\(3\\)Cisco Nx-os 6.2\\(3n\\)Cisco Nx-os 6.2\\(5\\)Cisco Nx-osCisco Mds 9000Cisco Mds 9100 -
NA
CVE-2014-3261
Buffer overflow in the Smart Call Home implementation in Cisco NX-OS on Fabric Interconnects in Cisco Unified Computing System 1.4 before 1.4(1i), NX-OS 5.0 before 5.0(3)U2(2) on Nexus 3000 devices, NX-OS 4.1 before 4.1(2)E1(1l) on Nexus 4000 devices, NX-OS 5.x before...
Cisco Unified Computing System 6120xp Fabric Interconnect -Cisco Unified Computing System 6140xp Fabric Interconnect -Cisco Unified Computing System 6248up Fabric Interconnect -Cisco Unified Computing System 6296up Fabric Interconnect -Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4\\(1j\\)Cisco Cg-os Cg4Cisco Cg-os Cg4\\(1\\)Cisco Cgr 1120 -Cisco Cgr 1240 -Cisco Nx-os 5.2Cisco Nx-os 5.2\\(1\\)Cisco Nx-os 5.2\\(3\\)Cisco Nexus 7000 -Cisco Nexus 7000 10-slot -Cisco Nexus 7000 18-slot -Cisco Nexus 7000 9-slot -Cisco Nx-os -Cisco Nx-os 5.0Cisco Nx-os 5.0\\(2\\)Cisco Nx-os 5.0\\(2\\)n1\\(1\\)Cisco Nx-os 5.0\\(2\\)n2\\(1\\)Cisco Nx-os 5.0\\(2\\)n2\\(1a\\)Cisco Nx-os 5.0\\(2a\\)Cisco Nx-os 5.0\\(3\\)Cisco Nx-os 5.0\\(3\\)n1\\(1\\)Cisco Nx-os 5.0\\(3\\)n1\\(1a\\)Cisco Nx-os 5.0\\(3\\)n1\\(1b\\)Cisco Nx-os 5.0\\(3\\)n1\\(1c\\)Cisco Nx-os 5.0\\(3\\)n2\\(1\\)Cisco Nx-os 5.0\\(3\\)n2\\(2\\)Cisco Nx-os 5.0\\(3\\)n2\\(2a\\)Cisco Nx-os 5.0\\(3\\)n2\\(2b\\)Cisco Nx-os 5.0\\(3\\)u1\\(1a\\)Cisco Nx-os 5.0\\(3\\)u1\\(1b\\)Cisco Nx-os 5.0\\(3\\)u1\\(1d\\)Cisco Nx-os 5.0\\(3\\)u1\\(2\\)Cisco Nx-os 5.0\\(3\\)u1\\(2a\\)Cisco Nx-os 5.0\\(3\\)u2\\(1\\)Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4\\(1j\\)Cisco Nexus 3016q -Cisco Nexus 3048 -Cisco Nexus 3064t -Cisco Nexus 3064x -Cisco Nexus 3548 -Cisco Nx-os 5.0\\(3\\)u2\\(2\\)Cisco Nx-os 5.0\\(3\\)u2\\(2a\\)Cisco Nx-os 5.0\\(3\\)u2\\(2b\\)Cisco Nx-os 5.0\\(3\\)u2\\(2c\\)Cisco Nx-os 5.0\\(3\\)u2\\(2d\\)Cisco Nx-os 5.0\\(3\\)u3\\(1\\)Cisco Nx-os 5.0\\(3\\)u3\\(2\\)Cisco Nx-os 5.0\\(3\\)u3\\(2a\\)Cisco Nx-os 5.0\\(3\\)u3\\(2b\\)Cisco Nx-os 5.0\\(3\\)u4\\(1\\)Cisco Nx-os 5.0\\(3\\)u5\\(1\\)Cisco Nx-os 5.0\\(3\\)u5\\(1a\\)Cisco Nx-os 5.0\\(3\\)u5\\(1b\\)Cisco Nx-os 5.0\\(3\\)u5\\(1c\\)Cisco Nx-os 5.0\\(3\\)u5\\(1d\\)Cisco Nx-os 5.0\\(3\\)u5\\(1e\\)Cisco Nx-os 5.0\\(5\\)Cisco Nx-os 5.1Cisco Nx-os 5.1\\(1\\)Cisco Nx-os 5.1\\(1a\\)Cisco Nx-os 5.1\\(2\\)Cisco Nx-os 5.1\\(3\\)Cisco Nexus 5000 -Cisco Nexus 5010 -Cisco Nexus 5010p Switch -Cisco Nexus 5020 -Cisco Nexus 5020p Switch -Cisco Nexus 5548p -Cisco Nexus 5548up -Cisco Nexus 5596up -Cisco Nx-os 4.1.\\(2\\)Cisco Nexus 4001i -
NA
CVE-2014-2129
The SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.48), 8.4 before 8.4(6.5), 9.0 before 9.0(3.1), and 9.1 before 9.1(2.5) allows remote attackers to cause a denial of service (memory consumption or device reload) via crafted SIP...
Cisco Adaptive Security Appliance Software 8.2Cisco Adaptive Security Appliance Software 8.4Cisco Adaptive Security Appliance Software 9.0Cisco Adaptive Security Appliance Software 9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalationTCPCVE-2020-4865CVE-2021-3297CVE-2018-15473CVE-2021-3317CVE-2021-23240denial of serviceCVE-2020-16107