Lucene search
K

182 matches found

CVE
CVE
added 2020/04/21 12:4 p.m.260 views

CVE-2020-11963

CVE-2020-11963 affects IQrouter up to firmware 3.3.1. When the device is unconfigured, the web-panel is vulnerable to Bash Shell Metacharacter Injection leading to remote code execution and potential root privileges. Documented impact includes multiple RCE vectors in the web-panel; exploitation r...

9.8CVSS9.9AI score0.03146EPSS
In wildExploits3References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2020/04/21 12:0 a.m.52 views

CVE-2020-11963

IQrouter through 3.3.1, when unconfigured, has multiple remote code execution vulnerabilities in the web-panel because of Bash Shell Metacharacter Injection. Note: The vendor claims that this vulnerability can only occur on a brand-new network that, after initiating the forced initial configurati...

9.8CVSS10AI score0.03146EPSS
In wildExploits3References6
Qualys Blog
Qualys Blog
added 2020/01/17 4:10 p.m.57 views

LibMiner: Container-Based Cryptocurrency Miner Targeting Unprotected Redis Servers

Qualys is actively tracking threats which target containers. In our recent analysis, we have identified a few docker instances executing a malware which we term as “LibMiner”. This malware has the capability to deploy and execute Cryptominer. It uses a unique technique for lateral movement across...

0.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/01/07 12:0 a.m.85 views

Cisco NX-OS Software Bash Bypass Guest Shell (cisco-sa-20190515-nxos-bash-bypass)

According to its self-reported version, Cisco NX-OS Software is affected by following vulnerability in the Bash shell implementation due to the incorrect implementation of a CLI command that allows a Bash command to be incorrectly invoked on the Guest Shell CLI. An authenticated, local attacker c...

7.2CVSS6.3AI score0.00398EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/07/30 12:0 a.m.27 views

Cisco NX-OS Software Bash Shell Privilege Escalation Vulnerability

According to its self-reported version, Cisco NX-OS Software is affected by a vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their privilege level to root. The attacker must authenticate with valid user credentials...

7.8CVSS7.4AI score0.00325EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/07/05 12:0 a.m.34 views

Cisco NX-OS Software Bash Shell Role-Based Access Control Bypass Privilege Escalation Vulnerability

According to its self-reported version, a bash shell implementation for Cisco NX-OS software is affected access control bypass privilege vulnerability. An authenticated local attacker can escalate their privilege level by executing commands authorized to other user roles. TRUSTED...

7.8CVSS7.5AI score0.00375EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2019/06/14 12:0 a.m.3 views

The vulnerability in the Bash shell implementation of the Cisco NX-OS network operating system allows a hacker to execute arbitrary commands.

The vulnerability of the Bash command shell implementation in the Cisco NX-OS network operating system of Cisco devices is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to bypass the restrictions of the Guest Shell and execute arbitrary commands...

6.6CVSS5.8AI score0.00398EPSS
Exploits0References4
Prion
Prion
added 2019/05/15 5:29 p.m.18 views

Command injection

A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to bypass the limited command set of the restricted Guest Shell and execute commands at the privilege level of a network-admin user outside of the Guest Shell. The attacker must...

7.2CVSS6.8AI score0.00398EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/05/15 4:50 p.m.56 views

CVE-2019-1730

Cisco NX-OS Software contains a Bash bypass vulnerability (CVE-2019-1730) where the Bash shell invocation in the restricted Guest Shell can be exploited by an authenticated, local attacker to run commands at the network-admin level outside the Guest Shell. The root cause is the incorrect implemen...

7.2CVSS6.4AI score0.00398EPSS
Exploits0References2Affected Software1
Cisco
Cisco
added 2019/05/15 4:0 p.m.97 views

Cisco NX-OS Software Bash Bypass Guest Shell Vulnerability

A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to bypass the limited command set of the restricted Guest Shell and execute commands at the privilege level of a network-admin user outside of the Guest Shell. The attacker must...

6CVSS6.4AI score0.00398EPSS
Exploits0References1
OSV
OSV
added 2019/04/26 5:29 p.m.4 views

UBUNTU-CVE-2019-9804

In Firefox Developer Tools it is possible that pasting the result of the 'Copy as cURL' command into a command shell on macOS will cause the execution of unintended additional bash script commands if the URL was maliciously crafted. This is the result of an issue with the native version of Bash o...

9.8CVSS7.5AI score0.01832EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/04/17 12:0 a.m.5 views

The vulnerability of the limited command interpreter rbash in the Bash shell allows a hacker to execute arbitrary commands.

The vulnerability of the limited command interpreter rbash in the Bash shell lies in insufficient validation of the values of the BASHCMDS array. Exploiting this vulnerability could allow an attacker to execute arbitrary commands...

7.8CVSS7.8AI score0.00415EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2019/03/22 12:0 a.m.14 views

The vulnerability in the Bash shell implementation of the Cisco NX-OS network operating system allows a hacker to elevate their privileges to the root level.

The vulnerability of the Bash shell implementation in the Cisco NX-OS network operating system devices relates to deficiencies in access control. Exploiting this vulnerability could allow an attacker to elevate their privileges to root by entering a specially created command in the Bash command...

7.8CVSS7.2AI score0.00325EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/03/22 12:0 a.m.5 views

The vulnerability in the implementation of the Bash shell of the Cisco NX-OS network operating system in Cisco devices allows a hacker to increase their privileges.

The vulnerability of the Bash shell implementation of the Cisco NX-OS network operating system in Cisco devices is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS7.2AI score0.00375EPSS
Exploits0References3
Prion
Prion
added 2019/03/07 7:29 p.m.19 views

Design/Logic Flaw

A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their privilege level to root. The attacker must authenticate with valid user credentials. The vulnerability is due to incorrect permissions of a system executable. A...

7.2CVSS7.6AI score0.00325EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2019/03/07 7:0 p.m.15 views

CVE-2019-1596 Cisco NX-OS Software Bash Shell Privilege Escalation Vulnerability

A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their privilege level to root. The attacker must authenticate with valid user credentials. The vulnerability is due to incorrect permissions of a system executable. A...

7.8CVSS6.9AI score0.00325EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/03/07 7:0 p.m.32 views

CVE-2019-1596 Cisco NX-OS Software Bash Shell Privilege Escalation Vulnerability

A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their privilege level to root. The attacker must authenticate with valid user credentials. The vulnerability is due to incorrect permissions of a system executable. A...

7.8CVSS7.7AI score0.00325EPSS
Exploits0References2
CNVD
CNVD
added 2019/03/07 12:0 a.m.1 views

Cisco NX-OS Elevation of Privilege Vulnerability

Cisco NX-OS is a set of data center-grade operating system software used by switches. An elevation of privilege vulnerability exists in the Bash shell implementation of Cisco NX-OS. The vulnerability stems from a failure of the Bash shell commands to be implemented correctly, resulting in the...

7.8CVSS7.2AI score0.00375EPSS
Exploits0References1
CNVD
CNVD
added 2019/03/07 12:0 a.m.3 views

Cisco NX-OS Software Privilege License and Access Control Vulnerability

Cisco Nexus 9500 R-Series Line Cards and Fabric Modules and so on are the products of Cisco Corporation.Cisco Nexus 9500 R-Series Line Cards and Fabric Modules is a 9500R Series Line Cards Modules.Cisco Nexus 3000 Series Switches is a 3000 Series Switch.Cisco Nexus 3500 Platform Switches is a 350...

7.8CVSS6.8AI score0.00325EPSS
Exploits0References1
NVD
NVD
added 2019/03/06 10:29 p.m.23 views

CVE-2019-1593

A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their privilege level by executing commands authorized to other user roles. The attacker must authenticate with valid user credentials. The vulnerability is due to th...

7.8CVSS7.8AI score0.00375EPSS
Exploits0References2
Rows per page
Query Builder