Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
threat detection engine vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv3
CVE-2018-0297
A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote malicious user to bypass a configured Secure Sockets Layer (SSL) Access Control (AC) policy to block SSL traffic. The vulnerability is due to the incorrect ha...
Cisco Firepower Threat Defense 6.0.0
Cisco Firepower Threat Defense 6.1.0
Cisco Firepower Threat Defense 6.2.2
Cisco Firepower Threat Defense 6.2.0
5.8
CVSSv3
CVE-2018-0243
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote malicious user to bypass a configured file action policy that is intended to drop the Server Message Block Version 2 (SMB2) and SMB Version 3 (SMB3) protocols if malw...
Cisco Firepower Threat Defense
5.8
CVSSv3
CVE-2018-0244
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote malicious user to bypass a configured file action policy to drop the Server Message Block (SMB) protocol if a malware file is detected. The vulnerability is due to ho...
Cisco Firepower Threat Defense
5.5
CVSSv3
CVE-2018-0202
clamscan in ClamAV prior to 0.99.4 contains a vulnerability that could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation checking mechanisms when handling Porta...
Clamav Clamav
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Debian Debian Linux 7.0
1 Github repository
5.5
CVSSv3
CVE-2018-1000085
ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xar_hash_check() that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The victim must scan a crafted XAR...
Clamav Clamav 0.99.3
Debian Debian Linux 7.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
5.5
CVSSv3
CVE-2017-11423
The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote malicious users to cause a denial of service (stack-based buffer over-read and application crash) via a crafted CAB file.
Libmspack Project Libmspack 0.5
5.4
CVSSv3
CVE-2023-20031
A vulnerability in the SSL/TLS certificate handling of Snort 3 Detection Engine integration with Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause the Snort 3 detection engine to restart. This vulnerability is due to a lo...
Cisco Firepower Threat Defense 7.0.0
Cisco Firepower Threat Defense 6.7.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.0.1
Cisco Firepower Threat Defense 7.0.0.1
Cisco Firepower Threat Defense 7.0.1.1
Cisco Firepower Threat Defense 7.0.2
Cisco Firepower Threat Defense 7.0.2.1
Cisco Firepower Threat Defense 7.0.3
Cisco Firepower Threat Defense 7.0.4
Cisco Firepower Threat Defense 7.2.0
Cisco Firepower Threat Defense 6.7.0.1
Cisco Firepower Threat Defense 6.7.0.2
Cisco Firepower Threat Defense 6.7.0.3
Cisco Firepower Threat Defense 7.0.5
5.3
CVSSv3
CVE-2023-20267
A vulnerability in the IP geolocation rules of Snort 3 could allow an unauthenticated, remote malicious user to potentially bypass IP address restrictions. This vulnerability exists because the configuration for IP geolocation rules is not parsed properly. An attacker could explo...
Cisco Firepower Threat Defense
5.3
CVSSv3
CVE-2022-20950
A vulnerability in the interaction of SIP and Snort 3 for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause the Snort 3 detection engine to restart. This vulnerability is due to a lack of error-checking when SIP bidirecti...
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.2.0
5.3
CVSSv3
CVE-2021-1495
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote malicious user to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An atta...
Cisco Firepower Threat Defense
Cisco Ios Xe
Snort Snort
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »