Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vpn client vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-52424
A newly discovered vulnerability, CVE-2023-52424, rooted in the IEEE 802.11 WiFi standard, allows attackers to perform SSID Confusion attacks. This flaw lets adversaries trick victims into connecting to less secure networks, intercepting and manipulating their traffic. Additional...
NA
CVE-2024-28883
An origin validation vulnerability exists in BIG-IP APM browser network access VPN client for Windows, macOS and Linux which may allow an malicious user to bypass F5 endpoint inspection. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
NA
CVE-2024-29209
A medium severity vulnerability has been identified in the update mechanism of the Phish Alert Button for Outlook, which could allow an malicious user to remotely execute arbitrary code on the host machine. The vulnerability arises from the application's failure to securely ...
NA
CVE-2024-20337
A vulnerability in the SAML authentication process of Cisco Secure Client could allow an unauthenticated, remote malicious user to conduct a carriage return line feed (CRLF) injection attack against a user. This vulnerability is due to insufficient validation of user-supplied inp...
1 Github repository
1 Article
NA
CVE-2023-36498
A post-authentication command injection vulnerability exists in the PPTP client functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. A specially crafted HTTP request can lead to arbitrary command injection. An attacker can make an authenticated...
Tp-link Er7206 Firmware 1.3.0
NA
CVE-2023-47267
An issue discovered in TheGreenBow Windows Enterprise Certified VPN Client 6.52, Windows Standard VPN Client 6.87, and Windows Enterprise VPN Client 6.87 allows malicious users to gain escalated privileges via crafted changes to memory mapped file.
Thegreenbow Windows Enterprise Certified Vpn 6.52
Thegreenbow Windows Standard Vpn 6.87
Thegreenbow Windows Enterprise Vpn 6.87
NA
CVE-2023-20240
Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local malicious user to cause a denial of service (DoS) condition on an affected system. These vulnerabilities are due to an out-of-bounds memory re...
Cisco Anyconnect Secure Mobility Client 4.9.00086
Cisco Anyconnect Secure Mobility Client 4.9.01095
Cisco Anyconnect Secure Mobility Client 4.9.02028
Cisco Anyconnect Secure Mobility Client 4.9.03047
Cisco Anyconnect Secure Mobility Client 4.9.03049
Cisco Anyconnect Secure Mobility Client 4.9.04043
Cisco Anyconnect Secure Mobility Client 4.9.04053
Cisco Anyconnect Secure Mobility Client 4.9.05042
Cisco Anyconnect Secure Mobility Client 4.9.06037
Cisco Secure Client 4.10.00093
Cisco Secure Client 4.10.01075
Cisco Secure Client 4.10.02086
Cisco Secure Client 4.10.03104
Cisco Secure Client 4.10.04065
Cisco Secure Client 4.10.04071
Cisco Secure Client 4.10.05085
Cisco Secure Client 4.10.05095
Cisco Secure Client 4.10.05111
Cisco Secure Client 4.10.06079
Cisco Secure Client 4.10.06090
Cisco Secure Client 4.10.07061
Cisco Secure Client 4.10.07062
NA
CVE-2023-20241
Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local malicious user to cause a denial of service (DoS) condition on an affected system. These vulnerabilities are due to an out-of-bounds memory re...
Cisco Anyconnect Secure Mobility Client 4.9.00086
Cisco Anyconnect Secure Mobility Client 4.9.01095
Cisco Anyconnect Secure Mobility Client 4.9.02028
Cisco Anyconnect Secure Mobility Client 4.9.03047
Cisco Anyconnect Secure Mobility Client 4.9.03049
Cisco Anyconnect Secure Mobility Client 4.9.04043
Cisco Anyconnect Secure Mobility Client 4.9.04053
Cisco Anyconnect Secure Mobility Client 4.9.05042
Cisco Anyconnect Secure Mobility Client 4.9.06037
Cisco Secure Client 4.10.00093
Cisco Secure Client 4.10.01075
Cisco Secure Client 4.10.02086
Cisco Secure Client 4.10.03104
Cisco Secure Client 4.10.04065
Cisco Secure Client 4.10.04071
Cisco Secure Client 4.10.05085
Cisco Secure Client 4.10.05095
Cisco Secure Client 4.10.05111
Cisco Secure Client 4.10.06079
Cisco Secure Client 4.10.06090
Cisco Secure Client 4.10.07061
Cisco Secure Client 4.10.07062
NA
CVE-2023-5593
The out-of-bounds write vulnerability in the Windows-based SecuExtender SSL VPN Client software version 4.0.4.0 could allow an authenticated local user to gain a privilege escalation by sending a crafted CREATE message.
Zyxel Secuextender Ssl Vpn 4.0.4.0
NA
CVE-2023-5748
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology SSL VPN Client prior to 1.4.7-0687 allows local users to conduct denial-of-service attacks via unspecified vectors.
Synology Ssl Vpn Client
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »