Vulnerabilities > Clavister
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-08-15 | CVE-2018-8753 | Unspecified vulnerability in Clavister COS Core The IKEv1 implementation in Clavister cOS Core before 11.00.11, 11.20.xx before 11.20.06, and 12.00.xx before 12.00.09 allows remote attackers to decrypt RSA-encrypted nonces by leveraging a Bleichenbacher attack. network clavister | 4.3 |
| 2007-07-16 | CVE-2007-3805 | Cryptographic Issues vulnerability in Clavister Coreplus 8.81.00 The IKE implementation in Clavister CorePlus before 8.80.03, and 8.80.00, does not properly validate certificates during IKE negotiation, which allows remote attackers to cause a denial of service (gateway stop) via certain certificates. | 5.4 |
| 2007-07-16 | CVE-2007-3804 | Permissions, Privileges, and Access Controls vulnerability in Clavister Coreplus The AntiVirus engine in the HTTP-ALG in Clavister CorePlus before 8.81.00 and 8.80.03 might allow remote attackers to bypass scanning via small files. | 5.0 |
| 2007-07-16 | CVE-2007-3803 | Security Bypass vulnerability in Clavister Coreplus The SMTP ALG in Clavister CorePlus before 8.80.04, and 8.81.00, does not properly parse SMTP commands in certain circumstances, which allows remote attackers to bypass address blacklists. | 10.0 |
| 2005-11-30 | CVE-2005-3915 | Denial Of Service vulnerability in Clavister Firewall and Clavister Security Gateway The Internet Key Exchange version 1 (IKEv1) implementation in Clavister Client Web allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | 7.5 |