14 matches found
CVE-2025-20285
A vulnerability in the IP Access Restriction feature of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to bypass configured IP access restrictions and log in to the device from a disallowed IP address. This vulnerability is due to improper enforcement of access controls...
CVE-2025-20285
creationtimestamp| type| source ---|---|--- 2025-07-17 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-605/...
CVE-2025-20285
A vulnerability in the IP Access Restriction feature of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to bypass configured IP access restrictions and log in to the device from a disallowed IP address. This vulnerability is due to improper enforcement of access controls...
CVE-2024-20285
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to escape the Python sandbox and gain unauthorized access to the underlying operating system of the device. The vulnerability is due to insufficient validation of...
Linux Distros Unpatched Vulnerability : CVE-2021-20285
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in upx canPack in plxelf.cpp in UPX 3.96. This flaw allows attackers to cause a denial of service SEGV or buffer overflow and application crash...
Cisco NX-OS Improper Isolation or Compartmentalization (CVE-2024-20285)
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to escape the Python sandbox and gain unauthorized access to the underlying operating system of the device. The vulnerability is due to insufficient validation of...
CVE-2024-20285 Cisco NX-OS Software Python Parser Escape Vulnerability
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to escape the Python sandbox and gain unauthorized access to the underlying operating system of the device. The vulnerability is due to insufficient validation of...
BELL-CVE-2021-20285 CVE-2021-20285 does not affect BellSoft software
Bulletin has no description...
CVE-2022-20285
CVE-2022-20285 affects Android 13 and involves a side-channel in PackageManager that can reveal whether an app is installed without query permissions, enabling local information disclosure with no user interaction. Affected component: PackageManager/framework behavior in Android 13; root cause is...
CVE-2021-20285
CVE-2021-20285 affects UPX 3.96, specifically the canPack path in p_lx_elf.cpp. A crafted ELF can cause denial of service (SEGV, buffer overflow) or other impacts, with the highest threat to availability. Remediation is to apply patched UPX packages (as indicated by Mageia/openSUSE advisories ref...
Fedora 32 : upx (2021-dff7e97510)
The remote Fedora 32 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-dff7e97510 advisory. - A flaw was found in upx canPack in plxelf.cpp in UPX 3.96. This flaw allows attackers to cause a denial of service SEGV or buffer overflow and application...
CVE-2020-20285
creationtimestamp| type| source ---|---|--- 2020-12-18 22:44:16+00:00| seen| https://t.me/cibsecurity/21096...
CVE-2019-20285
...
CVE-2019-20285
CVE-2019-20285 is rejected; Not used; this CVE ID does not represent an active vulnerability entry.