Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
streaming engine vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2017-16922
In com.wowza.wms.timedtext.http.HTTPProviderCaptionFile in Wowza Streaming Engine prior to 4.7.1, traversal of the directory structure and retrieval of a file are possible via a remote, specifically crafted HTTP request.
Wowza Streaming Engine
641
VMScore
CVE-2019-7656
A privilege escalation vulnerability in Wowza Streaming Engine 4.8.0 and previous versions allows any unprivileged Linux user to escalate privileges to root. The installer sets too relaxed permissions on /usr/local/WowzaStreamingEngine/bin/* core program files. By injecting a pay...
Wowza Streaming Engine
312
VMScore
CVE-2019-19453
Wowza Streaming Engine prior to 4.8.5 allows XSS (issue 1 of 2). An authenticated user, with access to the proxy license editing is able to insert a malicious payload that will be triggered in the main page of server settings. This issue was resolved in Wowza Streaming Engine 4.8...
Wowza Streaming Engine
641
VMScore
CVE-2019-19455
Wowza Streaming Engine prior to 4.8.5 has Insecure Permissions which may allow a local malicious user to escalate privileges in / usr / local / WowzaStreamingEngine / manager / bin / in the Linux version of the server by writing arbitrary commands in any file and execute them as ...
Wowza Streaming Engine
187
VMScore
CVE-2021-31539
Wowza Streaming Engine prior to 4.8.8.01 (in a default installation) has cleartext passwords stored in the conf/admin.password file. A regular local user is able to read usernames and passwords.
Wowza Streaming Engine
320
VMScore
CVE-2021-31540
Wowza Streaming Engine up to and including 4.8.5 (in a default installation) has incorrect file permissions of configuration files in the conf/ directory. A regular local user is able to read and write to all the configuration files, e.g., modify the application server configurat...
Wowza Streaming Engine
570
VMScore
CVE-2018-19365
The REST API in Wowza Streaming Engine 4.7.4.01 allows traversal of the directory structure and retrieval of a file via a remote, specifically crafted HTTP request.
Wowza Streaming Engine 4.7.4.0.1
668
VMScore
CVE-2003-0982
Buffer overflow in the authentication module for Cisco ACNS 4.x prior to 4.2.11, and 5.x prior to 5.0.5, allows remote malicious users to execute arbitrary code via a long password.
Cisco Application And Content Networking Software 5.0
Cisco Application And Content Networking Software 5.0.1
Cisco Content Distribution Manager 4650 4.1
Cisco Content Distribution Manager 4670
Cisco Content Engine 560 3.1
Cisco Content Engine 560 4.0
Cisco Content Engine 7320
Cisco Content Engine 7320 2.2 .0
Cisco Content Router 4430
Cisco Content Router 4450
Cisco Application And Content Networking Software 4.2.7
Cisco Application And Content Networking Software 4.2.9
Cisco Content Distribution Manager 4650
Cisco Content Distribution Manager 4650 4.0
Cisco Content Engine 560
Cisco Content Engine 560 2.2 .0
Cisco Content Engine 590 4.0
Cisco Content Engine 590 4.1
Cisco Content Engine Module For Cisco Router 3600 Series
Cisco Content Engine Module For Cisco Router 3700 Series
Cisco Application And Content Networking Software 4.0.3
Cisco Application And Content Networking Software 4.1.1
694
VMScore
CVE-2010-2824
Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote malicious users to cause a denial of ser...
Cisco Ace Module
694
VMScore
CVE-2010-2823
Unspecified vulnerability in the deep packet inspection feature on the Cisco Application Control Engine (ACE) 4710 appliance with software before A3(2.6) allows remote malicious users to cause a denial of service (device reload) via crafted HTTP packets, related to HTTP, RTSP, an...
Cisco Ace 4710 A3\\(1.0\\)
Cisco Ace 4710 A1\\(8.0\\)
Cisco Ace 4710 A1\\(2.0\\)
Cisco Ace 4710
Cisco Ace 4710 A3\\(2.0\\)
Cisco Ace 4710 A3\\(2.5\\)
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »