cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2006-3906,https://securityvulnerability.io/vulnerability/CVE-2006-3906,,"Internet Key Exchange (IKE) version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of IKE Phase-1 packets that exceed the session expiration rate. NOTE: it has been argued that this is due to a design weakness of the IKE version 1 protocol, in which case other vendors and implementations would also be affected.",Cisco,"Ios,Vpn 3001 Concentrator,Vpn 3015 Concentrator,Vpn 3020 Concentrator,Vpn 3030 Concentator,Vpn 3060 Concentrator,Vpn 3080 Concentrator,Adaptive Security Appliance Software,Vpn 3000 Concentrator Series Software,Vpn 3005 Concentrator Software,Pix Asa Ids,Pix Firewall,Pix Firewall 501,Pix Firewall 506,Pix Firewall 515,Pix Firewall 515e,Pix Firewall 520,Pix Firewall 525,Pix Firewall 535,Secure Pix Firewall,Pix Firewall Software",,,0.05920000001788139,false,,false,false,false,,,false,false,,2006-07-27T22:00:00.000Z,0
CVE-2005-4499,https://securityvulnerability.io/vulnerability/CVE-2005-4499,,"The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, which allows remote attackers to gain privileges by sniffing the username from the cleartext portion of a RADIUS session, then using the password to log in to another device that uses CS ACS.",Cisco,"Vpn 3001 Concentrator,Vpn 3015 Concentrator,Vpn 3020 Concentrator,Vpn 3030 Concentator,Vpn 3060 Concentrator,Vpn 3080 Concentrator,Adaptive Security Appliance Software,Vpn 3000 Concentrator Series Software,Vpn 3005 Concentrator Software,Pix Asa Ids,Pix Firewall,Secure Access Control Server,Vpn 3002 Hardware Client,Pix Firewall 501,Pix Firewall 506,Pix Firewall 515,Pix Firewall 515e,Pix Firewall 520,Pix Firewall 525,Pix Firewall 535,Pix Firewall Software",,,0.009530000388622284,false,,false,false,false,,,false,false,,2005-12-22T11:00:00.000Z,0
CVE-2005-2025,https://securityvulnerability.io/vulnerability/CVE-2005-2025,,"Cisco VPN 3000 Concentrator before 4.1.7.F allows remote attackers to determine valid groupnames by sending an IKE Aggressive Mode packet with the groupname in the ID field, which generates a response if the groupname is valid, but does not generate a response for an invalid groupname.",Cisco,"Vpn 3015 Concentrator,Vpn 3060 Concentrator,Vpn 3020 Concentrator,Vpn 3000 Concentrator,Vpn 3030 Concentator,Vpn 3080 Concentrator,Vpn 3000 Concentrator Series Software,Vpn 3005 Concentrator Software",,,0.0035200000274926424,false,,false,false,false,,,false,false,,2005-06-20T04:00:00.000Z,0
CVE-2005-0943,https://securityvulnerability.io/vulnerability/CVE-2005-0943,,Cisco VPN 3000 series Concentrator running firmware 4.1.7.A and earlier allows remote attackers to cause a denial of service (device reload or drop user connection) via a crafted HTTPS packet.,Cisco,"Vpn 3015 Concentrator,Vpn 3020 Concentrator,Vpn 3030 Concentator,Vpn 3060 Concentrator,Vpn 3080 Concentrator,Vpn 3000 Concentrator Series Software,Vpn 3005 Concentrator Software,Vpn 3002 Hardware Client",,,0.003280000062659383,false,,false,false,false,,,false,false,,2005-03-30T05:00:00.000Z,0
CVE-2003-0258,https://securityvulnerability.io/vulnerability/CVE-2003-0258,,"Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 3.5.x through 4.0.REL, when enabling IPSec over TCP for a port on the concentrator, allow remote attackers to reach the private network without authentication.",Cisco,"Vpn 3015 Concentrator,Vpn 3030 Concentator,Vpn 3060 Concentrator,Vpn 3080 Concentrator,Vpn 3000 Concentrator Series Software,Vpn 3005 Concentrator Software,Vpn 3002 Hardware Client",,,0.010099999606609344,false,,false,false,false,,,false,false,,2003-05-27T04:00:00.000Z,0
CVE-2001-0427,https://securityvulnerability.io/vulnerability/CVE-2001-0427,,"Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via a flood of invalid login requests to (1) the SSL service, or (2) the telnet service, which do not properly disconnect the user after several failed login attempts.",Cisco,"Vpn 3015 Concentrator,Vpn 3060 Concentrator,Vpn 3000 Concentrator,Vpn 3005 Concentrator,Vpn 3030 Concentator,Vpn 3080 Concentrator",,,0.005969999823719263,false,,false,false,false,,,false,false,,2001-06-18T04:00:00.000Z,0