Cisco Vpn 3000 Concentrator Series Software — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Vpn 3000 Concentrator Series Software, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (24)
CVE-2006-0483 — CVSS 7.8 (high): Cisco VPN 3000 series concentrators running software 4.7.0 through 4.7.2.A allow remote attackers to cause a denial of service (device…
CVE-2002-1097 — CVSS 7.5 (high): Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.2, allows restricted administrators to obtain certificate passwords that are stored…
CVE-2002-1098 — CVSS 7.5 (high): Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, adds an "HTTPS on Public Inbound (XML-Auto)(forward/in)" rule but sets the…
CVE-2002-1096 — CVSS 7.5 (high): Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.1, allows restricted administrators to obtain user passwords that are stored in…
CVE-2003-0258 — CVSS 7.5 (high): Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 3.5.x through 4.0.REL, when enabling IPSec over TCP for a port on…
CVE-2005-4499 — CVSS 7.5 (high): The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control…
CVE-2002-1092 — CVSS 7.5 (high): Cisco VPN 3000 Concentrator 3.6(Rel) and earlier, and 2.x.x, when configured to use internal authentication with group accounts and without…
CVE-2002-1102 — CVSS 5.0 (medium): The LAN-to-LAN IPSEC capability for Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.4, allows remote attackers to cause a denial of…
CVE-2002-1103 — CVSS 5.0 (medium): Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via (1) malformed…
CVE-2003-0259 — CVSS 5.0 (medium): Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7 allows remote attackers to cause a denial of…
CVE-2003-0260 — CVSS 5.0 (medium): Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7A allow remote attackers to cause a denial of…
CVE-2005-0943 — CVSS 5.0 (medium): Cisco VPN 3000 series Concentrator running firmware 4.1.7.A and earlier allows remote attackers to cause a denial of service (device reload…
CVE-2005-2025 — CVSS 5.0 (medium): Cisco VPN 3000 Concentrator before 4.1.7.F allows remote attackers to determine valid groupnames by sending an IKE Aggressive Mode packet…
CVE-2005-3669 — CVSS 5.0 (medium): Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allow remote…
CVE-2006-4313 — CVSS 5.0 (medium): Multiple unspecified vulnerabilities in Cisco VPN 3000 series concentrators before 4.1, 4.1.x up to 4.1(7)L, and 4.7.x up to 4.7(2)F allow…
CVE-2002-1093 — CVSS 5.0 (medium): HTML interface for Cisco VPN 3000 Concentrator 2.x.x and 3.x.x before 3.0.3(B) allows remote attackers to cause a denial of service (CPU…
CVE-2002-1094 — CVSS 5.0 (medium): Information leaks in Cisco VPN 3000 Concentrator 2.x.x and 3.x.x before 3.5.4 allow remote attackers to obtain potentially sensitive…
CVE-2002-1095 — CVSS 5.0 (medium): Cisco VPN 3000 Concentrator before 2.5.2(F), with encryption enabled, allows remote attackers to cause a denial of service (reload) via a…
CVE-2002-1099 — CVSS 5.0 (medium): Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to obtain potentially sensitive information without…
CVE-2002-1100 — CVSS 5.0 (medium): Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to cause a denial of service (crash) via a long (1)…
CVE-2002-1101 — CVSS 5.0 (medium): Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via a long user…
CVE-2001-0428 — CVSS 5.0 (medium): Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via an IP packet with an invalid IP…
CVE-2006-3906 — CVSS 5.0 (medium): Internet Key Exchange (IKE) version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows remote…
CVE-2006-3073 — CVSS 2.6 (low): Multiple cross-site scripting (XSS) vulnerabilities in the WebVPN feature in the Cisco VPN 3000 Series Concentrators and Cisco ASA 5500…