Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-24288

Malicious code in bioql PyPI...

6.6CVSS6.8AI score0.02344EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:53 a.m.14 views

CVE-2023-20109

A vulnerability in the Cisco Group Encrypted Transport VPN GET VPN feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute arbitrary code on an affected device or cause...

6.6CVSS8.3AI score0.02344EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/10/17 12:0 a.m.51 views

Cisco IOS XE Software Group Encrypted Transport VPN Out of Bounds Write (cisco-sa-getvpn-rce-g8qR68sx)

According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. - A vulnerability in the Cisco Group Encrypted Transport VPN GET VPN feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker who has administrative control o...

6.6CVSS7.5AI score0.02344EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/09/27 12:0 a.m.4 views

PT-2023-5691

Name of the Vulnerable Software and Affected Versions: Cisco IOS and IOS XE Software affected versions not specified Description: A vulnerability in the Cisco Group Encrypted Transport VPN GET VPN feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacke...

7.1CVSS7.5AI score0.02344EPSS
Exploits0References64
Cisco
Cisco
added 2013/07/19 3:48 p.m.25 views

Cisco IOS GET VPN Encryption Policy Bypass Vulnerability

A vulnerability in the Cisco Group Encrypted Transport VPN GET VPN feature of Cisco IOS could allow traffic to bypass the configured encryption policy. The vulnerability is due to the default, implicit policies set in place to permit Group Domain of Interpretation GDOI traffic to flow unencrypted...

5CVSS0.8AI score0.01429EPSS
Exploits0References1
Prion
Prion
added 2013/07/19 2:36 p.m.15 views

Default configuration

The default configuration of the Group Encrypted Transport VPN GET VPN feature on Cisco IOS uses an improper mechanism for enabling Group Domain of Interpretation GDOI traffic flow, which allows remote attackers to bypass the encryption policy via certain uses of UDP port 848, aka Bug ID CSCui076...

5CVSS7.3AI score0.01429EPSS
Exploits0References6
CVE
CVE
added 2013/07/18 10:0 p.m.48 views

CVE-2013-3436

Cisco IOS GET VPN vulnerable due to default implicit GDOI policy allowing unencrypted traffic on UDP 848, enabling bypass of encryption policy for GMs and KSs. Root cause is the default configuration that permits GDOI flow; exploitation requires access to trusted internal networks. Impact is bypa...

5CVSS7AI score0.01429EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder