Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vpn client vulnerabilities and exploits
(subscribe to this query)
7
CVSSv3
CVE-2022-25165
An issue exists in Amazon AWS VPN Client 2.0.0. A TOCTOU race condition exists during the validation of VPN configuration files. This allows parameters outside of the AWS VPN Client allow list to be injected into the configuration file prior to the AWS VPN Client service (running...
Amazon Aws Client Vpn 2.0.0
4 Github repositories
5
CVSSv3
CVE-2022-25166
An issue exists in Amazon AWS VPN Client 2.0.0. It is possible to include a UNC path in the OpenVPN configuration file when referencing file paths for parameters (such as auth-user-pass). When this file is imported and the client attempts to validate the file path, it performs an...
Amazon Aws Client Vpn 2.0.0
6
CVSSv3
CVE-2021-36809
A local attacker can overwrite arbitrary files on the system with VPN client logs using administrator privileges, potentially resulting in a denial of service and data loss, in all versions of Sophos SSL VPN client.
Sophos Ssl Vpn Client -
6.1
CVSSv3
CVE-2021-31814
In Stormshield 1.1.0, and 2.1.0 up to and including 2.9.0, an attacker can block a client from accessing the VPN and can obtain sensitive information through the SN VPN SSL Client.
Stormshield Stormshield Network Security
Stormshield Stormshield Network Security 1.1.0
7.5
CVSSv3
CVE-2021-1573
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to trigger a denial of service (DoS) condition. This vulnerability is due to i...
Cisco Firepower Threat Defense
Cisco Firepower Threat Defense 7.0.0
Cisco Adaptive Security Appliance
Cisco Adaptive Security Appliance Software
7.5
CVSSv3
CVE-2021-34704
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to trigger a denial of service (DoS) condition. This vulnerability is due to i...
Cisco Firepower Threat Defense
Cisco Firepower Threat Defense 7.0.0
Cisco Adaptive Security Appliance Software
7.8
CVSSv3
CVE-2021-20047
SonicWall Global VPN client version 4.10.6 (32-bit and 64-bit) and previous versions have a DLL Search Order Hijacking vulnerability. Successful exploitation via a local attacker could result in remote code execution in the target system.
Sonicwall Global Vpn Client
7.5
CVSSv3
CVE-2021-40117
A vulnerability in SSL/TLS message handler for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnera...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance
Cisco Adaptive Security Appliance Software
Cisco Asa 5512-x Firmware 009.009\\(002.085\\)
Cisco Asa 5512-x Firmware 009.014\\(002.106\\)
Cisco Asa 5505 Firmware 009.009\\(002.085\\)
Cisco Asa 5505 Firmware 009.014\\(002.106\\)
Cisco Asa 5515-x Firmware 009.009\\(002.085\\)
Cisco Asa 5515-x Firmware 009.014\\(002.106\\)
Cisco Asa 5525-x Firmware 009.009\\(002.085\\)
Cisco Asa 5525-x Firmware 009.014\\(002.106\\)
Cisco Asa 5545-x Firmware 009.009\\(002.085\\)
Cisco Asa 5545-x Firmware 009.014\\(002.106\\)
Cisco Asa 5555-x Firmware 009.009\\(002.085\\)
Cisco Asa 5555-x Firmware 009.014\\(002.106\\)
Cisco Asa 5580 Firmware 009.009\\(002.085\\)
Cisco Asa 5580 Firmware 009.014\\(002.106\\)
Cisco Asa 5585-x Firmware 009.009\\(002.085\\)
Cisco Asa 5585-x Firmware 009.014\\(002.106\\)
7.5
CVSSv3
CVE-2021-40118
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to trigger a denial of service (DoS) condition. This vulnerability is due to i...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance
Cisco Adaptive Security Appliance Software
Cisco Asa 5512-x Firmware 009.012\\(004.024\\)
Cisco Asa 5512-x Firmware 009.015\\(001\\)
Cisco Asa 5512-x Firmware 009.015\\(001.015\\)
Cisco Asa 5512-x Firmware 009.015\\(001.016\\)
Cisco Asa 5512-x Firmware 009.016\\(001\\)
Cisco Asa 5505 Firmware 009.012\\(004.024\\)
Cisco Asa 5505 Firmware 009.015\\(001\\)
Cisco Asa 5505 Firmware 009.015\\(001.015\\)
Cisco Asa 5505 Firmware 009.015\\(001.016\\)
Cisco Asa 5505 Firmware 009.016\\(001\\)
Cisco Asa 5515-x Firmware 009.012\\(004.024\\)
Cisco Asa 5515-x Firmware 009.015\\(001\\)
Cisco Asa 5515-x Firmware 009.015\\(001.015\\)
Cisco Asa 5515-x Firmware 009.015\\(001.016\\)
Cisco Asa 5515-x Firmware 009.016\\(001\\)
Cisco Asa 5525-x Firmware 009.012\\(004.024\\)
Cisco Asa 5525-x Firmware 009.015\\(001\\)
Cisco Asa 5525-x Firmware 009.015\\(001.015\\)
Cisco Asa 5525-x Firmware 009.015\\(001.016\\)
NA
CVE-2021-1444
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. This ...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »