|
247491
|
6.5 |
MEDIUM
Network
|
cisco
|
anyconnect_secure_mobility_client
adaptive_security_appliance_software
|
A vulnerability in the implementation of Security Assertion Markup Language (SAML) Single Sign-On (SSO) authentication for Cisco AnyConnect Secure Mobility Client for Desktop Platforms, Cisco Adaptiv…
|
CWE-384
Session Fixation
|
CVE-2018-0229
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247492
|
8.6 |
HIGH
Network
|
cisco
|
adaptive_security_appliance_software
firepower_threat_defense
|
A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause the CPU to increase upwards of 100% util…
|
CWE-667
Improper Locking
|
CVE-2018-0228
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247493
|
7.5 |
HIGH
Network
|
cisco
|
adaptive_security_appliance_software
firepower_threat_defense
|
A vulnerability in the Secure Sockets Layer (SSL) Virtual Private Network (VPN) Client Certificate Authentication feature for Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, r…
|
CWE-295
Improper Certificate Validation
|
CVE-2018-0227
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247494
|
9.0 |
CRITICAL
Network
|
cisco
|
webex_meetings_server
webex_meetings
webex_business_suite_31
webex_business_suite_32
|
A vulnerability in Cisco WebEx Business Suite clients, Cisco WebEx Meetings, and Cisco WebEx Meetings Server could allow an authenticated, remote attacker to execute arbitrary code on a targeted syst…
|
CWE-20
Improper Input Validation
|
CVE-2018-0112
|
2024-11-21 12:37 |
2018-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247495
|
5.5 |
MEDIUM
Local
|
juniper
|
jsnapy
|
JSNAPy is an open source python version of Junos Snapshot Administrator developed by Juniper available through github. The default configuration and sample files of JSNAPy automation tool versions pr…
|
CWE-276
Incorrect Default Permissions
|
CVE-2018-0023
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247496
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
A Junos device with VPLS routing-instances configured on one or more interfaces may be susceptible to an mbuf leak when processing a specific MPLS packet. Approximately 1 mbuf is leaked per each pack…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-0022
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247497
|
6.5 |
MEDIUM
Network
|
juniper
|
junos
|
A vulnerability in the Network Address Translation - Protocol Translation (NAT-PT) feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated …
|
CWE-20
Improper Input Validation
|
CVE-2018-0017
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247498
|
8.8 |
HIGH
Adjacent
|
juniper
|
junos
|
If all 64 digits of the connectivity association name (CKN) key or all 32 digits of the connectivity association key (CAK) key are not configured, all remaining digits will be auto-configured to 0. H…
|
NVD-CWE-noinfo
|
CVE-2018-0021
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247499
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
Junos OS may be impacted by the receipt of a malformed BGP UPDATE which can lead to a routing process daemon (rpd) crash and restart. Receipt of a repeated malformed BGP UPDATEs can result in an exte…
|
CWE-20
Improper Input Validation
|
CVE-2018-0020
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247500
|
5.9 |
MEDIUM
Network
|
juniper
|
junos
|
A vulnerability in Junos OS SNMP MIB-II subagent daemon (mib2d) may allow a remote network based attacker to cause the mib2d process to crash resulting in a denial of service condition (DoS) for the …
|
CWE-20
Improper Input Validation
|
CVE-2018-0019
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
