29 matches found
EUVD-2021-21439
Malware in sbrugna...
EUVD-2018-1275
Malware in sbrugna...
EUVD-2018-1274
Malware in sbrugna...
EUVD-2022-25902
Malicious code in bioql PyPI...
CVE-2022-20652
A vulnerability in the web-based management interface and in the API subsystem of Cisco Tetration could allow an authenticated, remote attacker to inject arbitrary commands to be executed with root-level privileges on the underlying operating system. This vulnerability is due to insufficient inpu...
CVE-2022-20652
A vulnerability in the web-based management interface and in the API subsystem of Cisco Tetration could allow an authenticated, remote attacker to inject arbitrary commands to be executed with root-level privileges on the underlying operating system. This vulnerability is due to insufficient inpu...
CVE-2022-20652 Cisco Tetration Command Injection Vulnerability
A vulnerability in the web-based management interface and in the API subsystem of Cisco Tetration could allow an authenticated, remote attacker to inject arbitrary commands to be executed with root-level privileges on the underlying operating system. This vulnerability is due to insufficient inpu...
CVE-2022-20652 Cisco Tetration Command Injection Vulnerability
A vulnerability in the web-based management interface and in the API subsystem of Cisco Tetration could allow an authenticated, remote attacker to inject arbitrary commands to be executed with root-level privileges on the underlying operating system. This vulnerability is due to insufficient inpu...
The vulnerability in the web interface for managing security devices in multi-cloud data centers of Cisco’s Tetration model allows attackers to execute arbitrary code or gain unauthorized access to protected information.
The vulnerability in the web-based interface for managing security devices in Cisco Tetration systems exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows an attacker to execute arbitrary code or gain unauthorized access to protected...
The vulnerability in the web interface for controlling security tools for Cisco Tetration-based multi-cloud data centers allows attackers to execute arbitrary commands.
The vulnerability of the web interface for managing security devices in multi-cloud data centers with Cisco Tetration relates to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to remotely...
Cisco Tetration Command Injection Vulnerability
A vulnerability in the web-based management interface and in the API subsystem of Cisco Tetration could allow an authenticated, remote attacker to inject arbitrary commands to be executed with root-level privileges on the underlying operating system. This vulnerability is due to insufficient inpu...
Cisco Tetration 操作系统命令注入漏洞
Cisco Tetration is a hybrid cloud workload protection from Cisco, Inc. It is used to provide comprehensive workload protection for multi-cloud data centers. Cisco Tetration has an operating system command injection vulnerability that stems from insufficient input validation. An attacker could...
CVE-2021-34789
A vulnerability in the web-based management interface of Cisco Tetration could allow an authenticated, remote attacker to perform a stored cross-site scripting XSS attack on an affected system. This vulnerability exists because the web-based management interface does not sufficiently validate...
CVE-2021-34789
A vulnerability in the web-based management interface of Cisco Tetration could allow an authenticated, remote attacker to perform a stored cross-site scripting XSS attack on an affected system. This vulnerability exists because the web-based management interface does not sufficiently validate...
Cross site scripting
A vulnerability in the web-based management interface of Cisco Tetration could allow an authenticated, remote attacker to perform a stored cross-site scripting XSS attack on an affected system. This vulnerability exists because the web-based management interface does not sufficiently validate...
CVE-2021-34789
Cisco Tetration’s web-based management interface contains a stored XSS flaw caused by insufficient input validation. An authenticated attacker with valid administrative credentials could inject malicious scripts into specific interface pages, allowing execution of arbitrary script in the affected...
CVE-2021-34789 Cisco Tetration Stored Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Tetration could allow an authenticated, remote attacker to perform a stored cross-site scripting XSS attack on an affected system. This vulnerability exists because the web-based management interface does not sufficiently validate...
Cisco Tetration 跨站脚本漏洞
Cisco Tetration is a hybrid cloud workload protection from Cisco USA. A cross-site scripting vulnerability exists in Cisco Tetration, which stems from the program's administrative interface not adequately validating user-supplied input. An attacker could exploit the vulnerability by injecting...
CVE-2018-0452
A vulnerability in the web-based management interface of Cisco Tetration Analytics could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability is due to insufficient...
CVE-2018-0451
A vulnerability in the web-based management interface of Cisco Tetration Analytics could allow an authenticated, remote attacker to conduct a cross-site request forgery CSRF attack and perform arbitrary actions on an affected device. The vulnerability is due to insufficient CSRF protections for t...