Lucene search
K

43 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-12982

Malware in sbrugna...

5.8CVSS5.8AI score0.02197EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0938

Malware in sbrugna...

7.2CVSS6.6AI score0.00445EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-15783

Malware in sbrugna...

7.5CVSS7.6AI score0.02297EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-6612

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.01273EPSS
Exploits0References1
CVE
CVE
added 2021/06/04 4:45 p.m.77 views

CVE-2021-1539

CVE-2021-1539 concerns multiple vulnerabilities in the authorization process of Cisco ASR 5000 Series Software (StarOS) that allow an authenticated, remote attacker to bypass authorization and execute a subset of CLI commands on an affected device. The issue stems from weaknesses in the authoriza...

8.8CVSS8.3AI score0.01093EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/01/22 12:0 a.m.25 views

Cisco StarOS for Cisco ASR 5000 Series Routers Arbitrary File Read (cisco-sa-staros-file-read-L3RDvtey)

According to its self-reported version, the Cisco StarOS operating system on the remote Cisco ASR 5000 series router is affected by an arbitrary file read vulnerability due to insecure handling of symbolic links. An authenticated, remote attacker can exploit this, by sending a crafted SFTP comman...

6.5CVSS6.6AI score0.01273EPSS
Exploits0References3
CNVD
CNVD
added 2021/01/14 12:0 a.m.6 views

Cisco StarOS Arbitrary File Read Vulnerability

Cisco StarOS is a router operating system that controls the entire system logic and can control processes and CLIs. An arbitrary file read vulnerability exists in Secure FTP SFTP in Cisco StarOS versions prior to 21.19.7 used in Cisco ASR 5000 series routers, which can be exploited by an attacker...

6.5CVSS6.7AI score0.01273EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/01/13 9:45 p.m.20 views

CVE-2021-1145 Cisco StarOS for Cisco ASR 5000 Series Routers Arbitrary File Read Vulnerability

A vulnerability in the Secure FTP SFTP of Cisco StarOS for Cisco ASR 5000 Series Routers could allow an authenticated, remote attacker to read arbitrary files on an affected device. To exploit this vulnerability, the attacker would need to have valid credentials on the affected device. The...

6.5CVSS6.6AI score0.01273EPSS
Exploits0References1
CVE
CVE
added 2021/01/13 9:45 p.m.69 views

CVE-2021-1145

CVE-2021-1145 affects Cisco StarOS for the Cisco ASR 5000 Series Routers. The vulnerability is due to insecure handling of symbolic links in Secure FTP (SFTP); with valid credentials, an authenticated attacker could read arbitrary files on the device by sending a crafted SFTP command. Cisco’s adv...

6.5CVSS6.4AI score0.01273EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2021/01/13 4:0 p.m.58 views

Cisco StarOS for Cisco ASR 5000 Series Routers Arbitrary File Read Vulnerability

A vulnerability in the Secure FTP SFTP of Cisco StarOS for Cisco ASR 5000 Series Routers could allow an authenticated, remote attacker to read arbitrary files on an affected device. To exploit this vulnerability, the attacker would need to have valid credentials on the affected device. The...

6.5CVSS2.3AI score0.01273EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/13 12:0 a.m.10 views

Cisco StarOS for Cisco ASR 5000 Series Routers 后置链接漏洞

Cisco StarOS is a router operating system that controls the entire system logic and can control processes and CLIs. An arbitrary file read vulnerability exists in Secure FTP SFTP in Cisco StarOS versions prior to 21.19.7 used in Cisco ASR 5000 series routers, which can be exploited by an attacker...

6.5CVSS6.6AI score0.01273EPSS
Exploits0References5
NVD
NVD
added 2020/10/08 5:15 a.m.15 views

CVE-2020-3602

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

7.2CVSS0.00387EPSS
Exploits0References1
OSV
OSV
added 2020/10/08 5:15 a.m.4 views

CVE-2020-3602

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

6.7CVSS6.9AI score0.00387EPSS
Exploits0References1
NVD
NVD
added 2020/10/08 5:15 a.m.16 views

CVE-2020-3601

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

7.2CVSS0.00377EPSS
Exploits0References1
Prion
Prion
added 2020/10/08 5:15 a.m.15 views

Input validation

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

7.2CVSS7AI score0.00387EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/10/08 4:21 a.m.10 views

CVE-2020-3601 Cisco StarOS Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

4.4CVSS7.7AI score0.00377EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/10/08 4:21 a.m.19 views

CVE-2020-3601 Cisco StarOS Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this...

4.4CVSS6.9AI score0.00377EPSS
Exploits0References1
CVE
CVE
added 2020/10/08 4:21 a.m.79 views

CVE-2020-3601

CVE-2020-3601 affects Cisco StarOS on ASR 5000 Series Routers. The vulnerability arises from insufficient input validation in the CLI, enabling an authenticated, local attacker with administrative credentials to execute arbitrary code with root privileges. Reports describe privilege escalation by...

7.2CVSS6.1AI score0.00377EPSS
Exploits0References1Affected Software1
NCSC
NCSC
added 2020/10/08 12:0 a.m.4 views

Vulnerabilities fixed in Cisco StarOS for ASR 5000 Series routers

Cisco has fixed multiple vulnerabilities in StarOS for ASR 5000 Series routers. A local malicious person with limited administrator privileges could potentially exploit the vulnerabilities to execute arbitrary code under root privileges. Cisco has released updates to fix the vulnerabilities in...

7.2CVSS7.5AI score0.00387EPSS
Exploits0
NVD
NVD
added 2020/06/18 3:15 a.m.19 views

CVE-2020-3244

A vulnerability in the Enhanced Charging Service ECS functionality of Cisco ASR 5000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass the traffic classification rules on an affected device. The vulnerability is due to insufficient input validation of...

5.3CVSS0.01011EPSS
Exploits0References1
Rows per page
Query Builder