Lucene search
K

23 matches found

BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.8 views

The vulnerability of the Cisco AnyConnect server and the Cisco Meraki MX and Cisco Meraki ZTeleworker Gateway network devices allows a perpetrator to trigger a device reboot or cause a service failure.

The vulnerability of the Cisco AnyConnect server and the Cisco Meraki MX and Cisco Meraki Z teleworker gateway devices is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to trigger a device reboot or cause a service failure...

7.8CVSS5.5AI score0.00557EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.7 views

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z teleworkers allows a hacker to cause a service outage.

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z teleworkers relates to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending...

8.6CVSS5.7AI score0.00508EPSS
Exploits0References3Affected Software1
NCSC
NCSC
added 2025/06/19 8:42 a.m.6 views

Vulnerability fixed in Cisco AnyConnect VPN for Meraki MX and Z

Cisco has fixed a vulnerability in the Cisco AnyConnect VPN server on Cisco Meraki MX and Z Series devices. The vulnerability is in how the Cisco AnyConnect VPN server initializes variables during the establishment of SSL VPN sessions. Unauthenticated remote attackers can exploit this...

8.6CVSS6.9AI score0.00477EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/18 12:0 a.m.1 views

Cisco Meraki Z和Cisco Meraki MX 安全漏洞

The Cisco Meraki Z and Cisco Meraki MX are both products of Cisco, Inc.The Cisco Meraki Z is an enterprise-class firewall, VPN gateway, and router.The Cisco Meraki MX is a multifunction security and SD-WAN enterprise appliance. A security vulnerability exists in Cisco Meraki Z and Cisco Meraki MX...

8.6CVSS6.4AI score0.00477EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/06/18 12:0 a.m.7 views

PT-2025-26180 · Cisco · Cisco Meraki Z Series +2

Name of the Vulnerable Software and Affected Versions: Cisco Meraki MX Firmware affected versions not specified Cisco Meraki Z Series Teleworker Gateway devices affected versions not specified Description: A vulnerability in the Cisco AnyConnect VPN server could allow an unauthenticated, remote...

8.6CVSS6.6AI score0.00477EPSS
Exploits0References22
BDU FSTEC
BDU FSTEC
added 2025/05/28 12:0 a.m.4 views

The vulnerability of the Cisco AnyConnect server and the Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway network devices allows a perpetrator to cause service interruptions.

The vulnerability of the Cisco AnyConnect server and the Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway network devices is related to the use of an uninitialized variable. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

7.7CVSS8AI score0.00655EPSS
Exploits0References3Affected Software2
CNNVD
CNNVD
added 2025/04/02 12:0 a.m.4 views

Cisco Meraki Z和Cisco Meraki MX 安全漏洞

Cisco Meraki Z and Cisco Meraki MX are both products of Cisco, Inc.Cisco Meraki Z is an enterprise-class firewall, VPN gateway, and router.Cisco Meraki MX is a multifunction security and SD-WAN enterprise appliance. A security vulnerability exists in Cisco Meraki Z and Cisco Meraki MX that stems...

7.7CVSS9AI score0.00655EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2025/03/31 12:0 a.m.2 views

VulnCheck KEV: CVE-2022-20933

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z3 Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of...

8.6CVSS5.8AI score0.00992EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/23 12:0 a.m.4 views

The vulnerability of the Cisco AnyConnect VPN server’s microprogramming software in Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateways allows a intruder to trigger a service failure.

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateways is related to a reallocation of memory. Exploiting this vulnerability could allow an attacker to cause service interruptions by sending specially...

8.6CVSS5.4AI score0.00508EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2024/10/02 7:15 p.m.28 views

CVE-2024-20509

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN session or cause a denial of service DoS condition for individual users of the AnyConnect VPN...

5.9CVSS0.0037EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/02 6:24 p.m.15 views

CVE-2024-20509

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN session or cause a denial of service DoS condition for individual users of the AnyConnect VPN...

5.8CVSS6AI score0.0037EPSS
Exploits0References1
CVE
CVE
added 2024/10/02 6:24 p.m.58 views

CVE-2024-20509

CVE-2024-20509 affects Cisco Meraki MX and Z Series Teleworker Gateway devices running Cisco AnyConnect VPN server. The issue arises from weak entropy in VPN authentication handlers and a race condition in the same process, enabling an unauthenticated, remote attacker to hijack an AnyConnect VPN ...

5.9CVSS6AI score0.0037EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/10/02 6:23 p.m.57 views

CVE-2024-20499

CVE-2024-20499 describes multiple DoS vulnerabilities in the Cisco AnyConnect VPN server used by Cisco Meraki MX and Z Series Teleworker Gateway devices. The flaws arise from insufficient validation of client-supplied parameters during SSL VPN session establishment, or from inadequate resource ma...

8.6CVSS8.2AI score0.00508EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/02 6:23 p.m.11 views

CVE-2024-20498 Cisco Meraki MX and Z3 Teleworker Gateway AnyConnect VPN Denial of Service Vulnerability

Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. These vulnerabilities are due to insufficie...

8.6CVSS7.1AI score0.00508EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/02 12:0 a.m.5 views

Cisco Meraki Z和Cisco Meraki MX 资源管理错误漏洞

The Cisco Meraki Z and Cisco Meraki MX are both products of Cisco, Inc.The Cisco Meraki Z is an enterprise-class firewall, VPN gateway, and router.The Cisco Meraki MX is a multifunction security and SD-WAN enterprise appliance. A resource management error vulnerability exists in the Cisco Meraki ...

8.6CVSS6.9AI score0.00508EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/10/02 12:0 a.m.5 views

Cisco Meraki Z和Cisco Meraki MX 缓冲区错误漏洞

The Cisco Meraki Z and Cisco Meraki MX are both products of Cisco, Inc.The Cisco Meraki Z is an enterprise-class firewall, VPN gateway, and router.The Cisco Meraki MX is a multifunction security and SD-WAN enterprise appliance. A buffer error vulnerability exists in the Cisco Meraki Z and Cisco...

8.6CVSS7.1AI score0.00508EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/10/02 12:0 a.m.7 views

PT-2024-18669 · Cisco · Cisco Meraki Z Series Teleworker Gateway +2

Name of the Vulnerable Software and Affected Versions: Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices affected versions not specified Description: The issue is due to insufficient validation of client-supplied parameters while establishing an SSL VPN session. An attacker cou...

8.6CVSS6.8AI score0.00508EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2022/12/12 12:0 a.m.6 views

The vulnerability of the Server Message Block Version 2 (SMB2) protocol implementation in the Snort intrusion detection system of Cisco Firepower Threat Defense (FTD), the Cisco Meraki MX network device management software, the Cisco Cyber Vision industrial network security control solution, and the Cisco Umbrella cloud security service allows a perpetrator to bypass security restrictions and cause service interruptions.

The vulnerability of the Server Message Block Version 2 SMB2 implementation in the Snort intrusion detection system of the Cisco Firepower Threat Defense FTD microprogramming network interface devices, the Cisco Meraki MX network devices, the Cisco Cyber Vision industrial network security control...

5.8CVSS6.6AI score0.00764EPSS
Exploits0References3Affected Software4
Positive Technologies
Positive Technologies
added 2022/11/09 12:0 a.m.4 views

PT-2022-5809

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense FTD with Snort 3 configured Cisco Meraki MX with Snort 3 configured Cisco Cyber Vision with Snort 3 configured Cisco Umbrella with Snort 3 configured Description Multiple vulnerabilities in the Server Message Blo...

6.5CVSS6.6AI score0.00764EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2022/11/09 12:0 a.m.4 views

PT-2022-6189 · Cisco · Cisco Meraki Mx +3

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense FTD versions with Snort 3 configured Cisco Meraki MX versions with Snort 3 configured Cisco Cyber Vision versions with Snort 3 configured Cisco Umbrella versions with Snort 3 configured Description: Multiple...

5.8CVSS6AI score0.0089EPSS
Exploits0References5
Rows per page
Query Builder