Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ssl vpn vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-20795
A vulnerability in the implementation of the Datagram TLS (DTLS) protocol in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause high CPU utilization, resulting in a deni...
Cisco Adaptive Security Appliance
Cisco Adaptive Security Appliance Software
Cisco Firepower Threat Defense
NA
CVE-2011-1827
Multiple unspecified vulnerabilities in Check Point SSL Network Extender (SNX), SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote malicious users to execute arbitrary code via vectors involving a (1) Active...
Checkpoint Connectra Ngx R66.1
Checkpoint Vpn-1 Firewall-1 Vsx R65.20
Checkpoint Vpn-1 R65.70
Checkpoint Vpn-1 R70.40
Checkpoint Vpn-1 R71.30
Checkpoint Vpn-1 R75
Checkpoint Connectra Ngx R66.1n
Checkpoint Vpn-1 Firewall-1 Vsx R67
8.6
CVSSv3
CVE-2020-3572
A vulnerability in the SSL/TLS session handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulne...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance
Cisco Adaptive Security Appliance Software
NA
CVE-2021-1444
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. This ...
7.5
CVSSv3
CVE-2023-20006
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Appliances could allow an unauthenticated, remote malicious user to cause...
Cisco Firepower Threat Defense 7.2.1
Cisco Firepower Threat Defense 7.2.2
Cisco Firepower Threat Defense 7.2.3
Cisco Adaptive Security Appliance Software 9.16.4
Cisco Adaptive Security Appliance Software 9.18.2
Cisco Adaptive Security Appliance Software 9.18.2.5
NA
CVE-2014-2126
Cisco Adaptive Security Appliance (ASA) Software 8.2 prior to 8.2(5.47), 8.4 prior to 8.4(7.5), 8.7 prior to 8.7(1.11), 9.0 prior to 9.0(3.10), and 9.1 prior to 9.1(3.4) allows remote authenticated users to gain privileges by leveraging level-0 ASDM access, aka Bug ID CSCuj33496.
Cisco Adaptive Security Appliance Software 8.2
Cisco Adaptive Security Appliance Software 8.4
Cisco Adaptive Security Appliance Software 9.0
Cisco Adaptive Security Appliance Software 8.7
Cisco Adaptive Security Appliance Software 9.1
2 Nmap scripts
1 Github repository
NA
CVE-2014-2129
The SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software 8.2 prior to 8.2(5.48), 8.4 prior to 8.4(6.5), 9.0 prior to 9.0(3.1), and 9.1 prior to 9.1(2.5) allows remote malicious users to cause a denial of service (memory consumption or device reload) via craft...
Cisco Adaptive Security Appliance Software 8.2
Cisco Adaptive Security Appliance Software 8.4
Cisco Adaptive Security Appliance Software 9.0
Cisco Adaptive Security Appliance Software 9.1
2 Nmap scripts
3.7
CVSSv3
CVE-2020-3585
A vulnerability in the TLS handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000 Series firewalls could allow an unauthenticated, remote malicious user to gain access to sensitive information. The vu...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance Software
NA
CVE-2014-5801
The DataGard VPN + AV (aka ocshield.com) application @7F050013 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Ocshield Datagard Vpn \\+ Av \\@7f050013
NA
CVE-2014-5928
The Steganos Online Shield VPN (aka com.steganos.onlineshield) application 1.0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Steganos Steganos Online Shield Vpn 1.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »