Lucene search
K

21 matches found

BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.5 views

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z series network devices, known as Teleworker Gateway, allows a intruder to cause a service failure.

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z series Teleworker Gateways is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

7.8CVSS5.5AI score0.00523EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.8 views

The vulnerability of the Cisco AnyConnect server and the Cisco Meraki MX and Cisco Meraki ZTeleworker Gateway network devices allows a perpetrator to trigger a device reboot or cause a service failure.

The vulnerability of the Cisco AnyConnect server and the Cisco Meraki MX and Cisco Meraki Z teleworker gateway devices is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to trigger a device reboot or cause a service failure...

7.8CVSS5.5AI score0.00557EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.6 views

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z series network devices, known as Teleworker Gateway, allows a intruder to cause a service failure.

The vulnerability of the Cisco AnyConnect VPN server of the microsoftware for Cisco Meraki MX and Cisco Meraki Z series Teleworker Gateways is related to the use of an uninitialized variable during the establishment of an SSL VPN session. Exploiting this vulnerability can allow a malicious actor ...

8.6CVSS5.5AI score0.00481EPSS
Exploits0References2Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2025/03/31 12:0 a.m.2 views

VulnCheck KEV: CVE-2022-20933

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z3 Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of...

8.6CVSS5.8AI score0.00992EPSS
Exploits0References1
NVD
NVD
added 2024/10/02 7:15 p.m.28 views

CVE-2024-20509

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN session or cause a denial of service DoS condition for individual users of the AnyConnect VPN...

5.9CVSS0.0037EPSS
Exploits0References1
NVD
NVD
added 2024/10/02 7:15 p.m.28 views

CVE-2024-20499

Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. These vulnerabilities are due to insufficie...

8.6CVSS0.00508EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/02 6:24 p.m.15 views

CVE-2024-20509

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN session or cause a denial of service DoS condition for individual users of the AnyConnect VPN...

5.8CVSS6AI score0.0037EPSS
Exploits0References1
CVE
CVE
added 2024/10/02 6:24 p.m.58 views

CVE-2024-20509

CVE-2024-20509 affects Cisco Meraki MX and Z Series Teleworker Gateway devices running Cisco AnyConnect VPN server. The issue arises from weak entropy in VPN authentication handlers and a race condition in the same process, enabling an unauthenticated, remote attacker to hijack an AnyConnect VPN ...

5.9CVSS6AI score0.0037EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/02 6:23 p.m.13 views

CVE-2024-20513

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition for targeted users of the AnyConnect service on an affected device. This vulnerability is due to...

5.8CVSS5.6AI score0.00455EPSS
Exploits0References1
CVE
CVE
added 2024/10/02 6:23 p.m.58 views

CVE-2024-20499

CVE-2024-20499 describes multiple DoS vulnerabilities in the Cisco AnyConnect VPN server used by Cisco Meraki MX and Z Series Teleworker Gateway devices. The flaws arise from insufficient validation of client-supplied parameters during SSL VPN session establishment, or from inadequate resource ma...

8.6CVSS8.2AI score0.00508EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/10/02 6:23 p.m.59 views

CVE-2024-20500

The CVE-2024-20500 issue affects Cisco Meraki MX and Z Series Teleworker Gateway devices, specifically the Cisco AnyConnect VPN server. Root cause: insufficient resource management when establishing TLS/SSL sessions, enabling an unauthenticated, remote attacker to induce a DoS by sending crafted ...

7.5CVSS6AI score0.00557EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/02 6:23 p.m.11 views

CVE-2024-20500

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. This vulnerability is due to insufficient resource...

5.8CVSS6.5AI score0.00557EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/02 6:23 p.m.11 views

CVE-2024-20498 Cisco Meraki MX and Z3 Teleworker Gateway AnyConnect VPN Denial of Service Vulnerability

Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. These vulnerabilities are due to insufficie...

8.6CVSS7.1AI score0.00508EPSS
Exploits0References1
CVE
CVE
added 2024/10/02 6:23 p.m.58 views

CVE-2024-20498

CVE-2024-20498 describes multiple DoS vulnerabilities in the Cisco AnyConnect VPN server used by Cisco Meraki MX and Z Series Teleworker Gateway devices. The flaws arise from insufficient validation/resource management while establishing SSL/TLS VPN sessions and handling client-supplied parameter...

8.6CVSS8.2AI score0.00508EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2024/10/02 4:0 p.m.12 views

Cisco Meraki MX and Z Series Teleworker Gateway AnyConnect VPN Denial of Service Vulnerabilities

Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service DoS condition to the AnyConnect VPN service on an affected device. For more information...

8.6CVSS6.7AI score0.00557EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/02 12:0 a.m.7 views

PT-2024-18668 · Cisco · Cisco Meraki Z Series Teleworker Gateway +2

Name of the Vulnerable Software and Affected Versions: Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices affected versions not specified Description: A vulnerability in the Cisco AnyConnect VPN server could allow an unauthenticated, remote attacker to cause a DoS condition in t...

7.8CVSS7AI score0.00557EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/10/02 12:0 a.m.7 views

PT-2024-18669 · Cisco · Cisco Meraki Z Series Teleworker Gateway +2

Name of the Vulnerable Software and Affected Versions: Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices affected versions not specified Description: The issue is due to insufficient validation of client-supplied parameters while establishing an SSL VPN session. An attacker cou...

8.6CVSS6.8AI score0.00508EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2023/11/08 12:0 a.m.10 views

PT-2023-9503 · Cisco · Cisco Meraki Z Series Teleworker Gateway +2

Name of the Vulnerable Software and Affected Versions: Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices affected versions not specified Description: The issue is due to insufficient validation of client-supplied parameters while establishing an SSL VPN session. An attacker cou...

8.6CVSS6.8AI score0.00508EPSS
Exploits0References13
Prion
Prion
added 2022/10/26 3:15 p.m.18 views

Input validation

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z3 Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of...

5CVSS8.3AI score0.00992EPSS
Exploits0References1Affected Software21
Vulnrichment
Vulnrichment
added 2022/10/26 2:0 p.m.16 views

CVE-2022-20933 Cisco Meraki MX and Z3 Teleworker Gateway VPN Denial of Service Vulnerability

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z3 Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of...

8.6CVSS7AI score0.00992EPSS
Exploits0References1
Rows per page
Query Builder