The vulnerability of the command-line interface of the Brocade Fabric OS allows a intruder to gain unauthorized access to protected information.

The vulnerability of the command-line interface of the Brocade Fabric OS is related to the disclosure of information. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the command-line interface of the Brocade Fabric OS allows a hacker to gain increased privileges.

The vulnerability of the command-line interface of the Brocade Fabric OS is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges using commands such as “supportlink”, “firmwaredownload”, “portcfgupload”, and “fosexec”...

The vulnerability of the command-line interface of the Brocade Fabric OS allows a intruder to gain unauthorized access to protected information.

The vulnerability of the command-line interface of the Brocade Fabric OS relates to the disclosure of information. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to protected information using the commands “seccryptocfg” and “configupload”...

CVE-2021-44171

A improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiOS version 6.0.0 through 6.0.14, FortiOS version 6.2.0 through 6.2.10, FortiOS version 6.4.0 through 6.4.8, FortiOS version 7.0.0 through 7.0.3 allows attacker to execute privileged command...

CVE-2022-20850

A vulnerability in the CLI of stand-alone Cisco IOS XE SD-WAN Software and Cisco SD-WAN Software could allow an authenticated, local attacker to delete arbitrary files from the file system of an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit...

CVE-2022-20775

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. This vulnerability is due to improper access controls on commands within the application CLI. An attacker could exploit this vulnerability by running a maliciously crafted...

CVE-2022-20818

Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could exploit these vulnerabilities by running a...

CVE-2022-20775 Cisco SD-WAN Software Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. This vulnerability is due to improper access controls on commands within the application CLI. An attacker could exploit this vulnerability by running a maliciously crafted...

Aruba Networks ArubaOS and InstantOS Command Execution Vulnerabilities

ArubaOS is the network operating system for Aruba Mobility Controllers, Mobility Masters, and controller-managed Access Points APs.InstantOS is an Arch Linux-based distribution. A command execution vulnerability exists in Aruba Networks ArubaOS and InstantOS. The vulnerability stems from the...

PT-2022-6016 · Cisco · Cisco Sd-Wan Vsmart Controller +5

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN Software versions affected versions not specified Cisco SD-WAN vBond Orchestrator versions affected versions not specified Cisco SD-WAN vEdge Cloud Routers versions affected versions not specified Cisco SD-WAN vEdge Routers...

PT-2022-6015

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN Software affected versions not specified Cisco SD-WAN vBond Orchestrator Cisco SD-WAN vEdge Cloud Routers Cisco SD-WAN vEdge Routers Cisco SD-WAN vSmart Controller Cisco SD-WAN vManage Description A flaw exists in the Command Line...

Cisco SD-WAN 路径遍历漏洞

Cisco SD-WAN is a highly secure cloud-scale architecture from Cisco that is open, programmable, and scalable. Cisco SD-WAN Software suffers from a path traversal vulnerability that stems from improper access control to commands in the application CLI, which could allow an authenticated local...

PT-2022-6177 · Cisco · Cisco Sd-Wan +1

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE SD-WAN Software affected versions not specified Cisco SD-WAN Software affected versions not specified Description: A vulnerability in the CLI of stand-alone Cisco IOS XE SD-WAN Software and Cisco SD-WAN Software could allow an...

Design/Logic Flaw

Mist is the command-line interface for the makedeb Package Repository. Prior to version 0.9.5, a user-provided sudo binary via the PATH variable can allow a local user to run arbitrary commands on the user's system with root permissions. Versions 0.9.5 and later contain a patch. No known...

CVE-2022-39245 Mist vulnerable to user providing a Sudo binary for authentication checks

Mist is the command-line interface for the makedeb Package Repository. Prior to version 0.9.5, a user-provided sudo binary via the PATH variable can allow a local user to run arbitrary commands on the user's system with root permissions. Versions 0.9.5 and later contain a patch. No known...

CVE-2022-39245 Mist vulnerable to user providing a Sudo binary for authentication checks

Mist is the command-line interface for the makedeb Package Repository. Prior to version 0.9.5, a user-provided sudo binary via the PATH variable can allow a local user to run arbitrary commands on the user's system with root permissions. Versions 0.9.5 and later contain a patch. No known...

Security Bulletin: SONAS Fix Available for Code Injection via Command Line Interface and SONAS Graphical User Interface (CVE-2012-2163)

Abstract SONAS has a vulnerability that allows SONAS administrative users to execute commands as root. Content VULNERABILITY DETAILS: CVE ID: CVE-2012-2163 DESCRIPTION: An error in the command execution of the SONAS Command Line Interface and the SONAS Graphical User Interface could be leveraged ...

Security Bulletin: Storwize V7000 Unified Fix Available for Code Injection via Command Line Interface and Graphical User Interface (CVE-2012-2163)

Abstract Storwize V7000 Unified has a vulnerability that allows the administrative users to execute commands as root. Content VULNERABILITY DETAILS: CVE ID: CVE-2012-2163 DESCRIPTION: An error in the command execution of the Storwize V7000 Unified Command Line Interface and the Graphical User...

Mist 代码问题漏洞

Mist is the official command line interface to the makedeb package repository, a makedeb open source. A code issue vulnerability exists in Mist 0.9.5 and earlier versions, which stems from a user-supplied sudo binary via the PATH variable that allows a local user to run arbitrary commands on the...

Security Bulletin: Vulnerability in command line interface (CVE-2013-5455)

Abstract Any user, even with READ-ONLY access to everything, has the ability to start/stop/DELETE ANY virtual system using the command line interface. Content VULNERABILITY DETAILS: DESCRIPTION: Any user, even with READ-ONLY access to everything, has the ability to start/stop/DELETE ANY virtual...