Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unauthorized vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-15956
A vulnerability in the web management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform an unauthorized system reset on an affected device. The vulnerability is due to improper authorization c...
Cisco Asyncos
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 11.7.0-fcs-418
NA
CVE-2021-1410
A vulnerability in the distribution list feature of Cisco Webex Meetings could allow an authenticated, remote attacker to modify a distribution list that belongs to another user of their organization. The vulnerability is due to insufficient authorization enforcement for requests...
NA
CVE-2014-0682
Cisco WebEx Meetings Server allows remote authenticated users to bypass authorization checks and (1) join arbitrary meetings, or (2) terminate a meeting without having a host role, via a crafted URL, aka Bug ID CSCuj42346.
Cisco Webex Meetings Server -
7.5
CVSSv3
CVE-2015-2073
The File RepositoRy Server (FRS) CORBA listener in SAP BussinessObjects Edge 4.0 allows remote malicious users to read arbitrary files via a full pathname, aka SAP Note 2018682.
Sap Businessobjects Edge 4.0
7.5
CVSSv3
CVE-2015-2074
The File Repository Server (FRS) CORBA listener in SAP BussinessObjects Edge 4.0 allows remote malicious users to write to arbitrary files via a full pathname, aka SAP Note 2018681.
Sap Businessobjects Edge 4.0
NA
CVE-2004-0671
Brightmail Spamfilter 6.0 and previous versions beta releases allows remote malicious users to read mail from other users by modifying the id parameter in a viewMsgDetails.do request.
Symantec Brightmail Antispam 6.0
1 EDB exploit
NA
CVE-2012-0902
AirTies Air 4450 1.1.2.18 allows remote malicious users to cause a denial of service (reboot) via a direct request to cgi-bin/loader.
Airties Air 4450 1.1.2.18
1 EDB exploit
NA
CVE-2015-4225
Cisco Application Policy Infrastructure Controller (APIC) 1.0(1.110a) and 1.0(1e) on Nexus 9000 devices does not properly implement RBAC health scoring, which allows remote authenticated users to obtain sensitive information via unspecified vectors, aka Bug ID CSCuq77485.
Cisco Nx-os 1.0\\(1.110a\\)
Cisco Nx-os 1.0\\(1e\\)
9.9
CVSSv3
CVE-2017-12251
A vulnerability in the web console of the Cisco Cloud Services Platform (CSP) 2100 could allow an authenticated, remote malicious user to interact maliciously with the services or virtual machines (VMs) operating remotely on an affected CSP device. The vulnerability is due to wea...
Cisco Cloud Services Platform 2100 2.1.0
Cisco Cloud Services Platform 2100 2.2.2
Cisco Cloud Services Platform 2100 2.1.1
Cisco Cloud Services Platform 2100 2.1.2
Cisco Cloud Services Platform 2100 2.2.0
Cisco Cloud Services Platform 2100 2.2.1
NA
CVE-2003-1162
index.php in Tritanium Bulletin Board 1.2.3 allows remote malicious users to read and reply to arbitrary messages by modifying the thread_id, forum_id, and sid parameters.
Tritanium Scripts Tritanium Bulletin Board 1.2.1
Tritanium Scripts Tritanium Bulletin Board 1.2.2
Tritanium Scripts Tritanium Bulletin Board 1.1 Final
Tritanium Scripts Tritanium Bulletin Board 1.2
Tritanium Scripts Tritanium Bulletin Board 0.999 Beta
Tritanium Scripts Tritanium Bulletin Board 1.0 Beta
Tritanium Scripts Tritanium Bulletin Board 0.993 Beta
Tritanium Scripts Tritanium Bulletin Board 0.994 Beta
Tritanium Scripts Tritanium Bulletin Board 1.2.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »