Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure access control system vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-2086
Buffer overflow in JuniperSetupDLL.dll, loaded from JuniperSetup.ocx by the Juniper SSL-VPN Client when accessing a Juniper NetScreen IVE device running IVE OS prior to 4.2r8.1, 5.0 prior to 5.0r6.1, 5.1 prior to 5.1r8, 5.2 prior to 5.2r4.1, or 5.3 prior to 5.3r2.1, allows remote...
Juniper Junipersetup Control
1 EDB exploit
7.5
CVSSv2
CVE-2006-1672
The installation of Cisco Transport Controller (CTC) for Cisco Optical Networking System (ONS) 15000 series nodes adds a Java policy file entry with a wildcard that grants the java.security.AllPermission permission to any http URL containing "fs/LAUNCHER.jar", which all...
Cisco Transport Controller 4.0.x
Cisco Optical Networking Systems Software 3.3.0
Cisco Optical Networking Systems Software 3.4.0
Cisco Optical Networking Systems Software 4.1\\(3\\)
Cisco Optical Networking Systems Software 4.1.4
Cisco Optical Networking Systems Software 1.3\\(0\\)
Cisco Ons 15310-cl Series 0
Cisco Optical Networking Systems Software 4.0.0
Cisco Optical Networking Systems Software 4.0\\(1\\)
Cisco Optical Networking Systems Software 4.6\\(0\\)
Cisco Optical Networking Systems Software 4.6\\(1\\)
Cisco Ons 15600 0
Cisco Optical Networking Systems Software 3.0
Cisco Optical Networking Systems Software 4.0\\(2\\)
Cisco Optical Networking Systems Software 4.1\\(0\\)
Cisco Ons 15454 Mspp
Cisco Optical Networking Systems Software 1.0
Cisco Optical Networking Systems Software 1.1
Cisco Optical Networking Systems Software 3.1.0
Cisco Optical Networking Systems Software 3.2
Cisco Optical Networking Systems Software 4.1\\(1\\)
Cisco Optical Networking Systems Software 4.1\\(2\\)
7.5
CVSSv2
CVE-2003-0210
Buffer overflow in the administration service (CSAdmin) for Cisco Secure ACS prior to 3.1.2 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long user parameter to port 2002.
Cisco Secure Access Control Server 2.5
Cisco Secure Access Control Server 2.6
Cisco Secure Access Control Server 3.1.1
Cisco Secure Access Control Server 2.6.2
Cisco Secure Access Control Server 2.6.3
Cisco Secure Access Control Server 2.1
Cisco Secure Access Control Server 2.6.4
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 2.3
Cisco Secure Access Control Server 2.4
Cisco Secure Access Control Server 3.0.1
Cisco Secure Access Control Server 3.0.3
7.5
CVSSv2
CVE-2002-0724
Buffer overflow in SMB (Server Message Block) protocol in Microsoft Windows NT, Windows 2000, and Windows XP allows malicious users to cause a denial of service (crash) via a SMB_COM_TRANSACTION packet with a request for the (1) NetShareEnum, (2) NetServerEnum2, or (3) NetServerE...
Microsoft Windows 2000
Microsoft Windows Nt 4.0
Microsoft Windows Xp
2 EDB exploits
7.5
CVSSv2
CVE-2001-0929
Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated Software, for IOS 11.2P up to and including 12.2T does not properly check the IP protocol type, which could allow remote malicious users to bypass access control lists.
Cisco Ios 11.3t
Cisco Ios 12.0
Cisco Ios 11.2p
Cisco Ios 12.2
Cisco Ios 12.2t
Cisco Ios 12.0t
Cisco Ios 12.1
Cisco Ios 12.1e
Cisco Ios 12.1t
7.5
CVSSv2
CVE-2000-0419
The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote malicious users to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability.
Microsoft Photodraw 2000 1.0
Microsoft Powerpoint 2000
Microsoft Project 2000
Microsoft Access 2000
Microsoft Word 2000
Microsoft Works 2000
Microsoft Office 2000
Microsoft Outlook 2000
Microsoft Excel 2000
Microsoft Frontpage 2000
7.2
CVSSv2
CVE-2021-40124
A vulnerability in the Network Access Manager (NAM) module of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to escalate privileges on an affected device. This vulnerability is due to incorrect privilege assignment to script...
Cisco Anyconnect Secure Mobility Client
7.2
CVSSv2
CVE-2021-3489
The eBPF RINGBUF bpf_ringbuf_reserve() function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an malicious user to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed ...
Linux Linux Kernel
Linux Linux Kernel 5.13
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 20.10
Canonical Ubuntu Linux 21.04
1 Github repository
7.2
CVSSv2
CVE-2021-3490
The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code execution. This issue was fixed via commit 049c4...
Linux Linux Kernel
Linux Linux Kernel 5.13
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 20.10
Canonical Ubuntu Linux 21.04
6 Github repositories
1 Article
7.2
CVSSv2
CVE-2021-3491
The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/<PID>/mem. This could be used to create a heap overflow leading to arbitrary code e...
Linux Linux Kernel
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 20.10
Canonical Ubuntu Linux 21.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »