Lucene search
K

73 matches found

NVD
NVD
added 2017/11/08 8:29 p.m.16 views

CVE-2017-15865

bgpd in FRRouting FRR before 2.0.2 and 3.x before 3.0.2, as used in Cumulus Linux before 3.4.3 and other products, allows remote attackers to obtain sensitive information via a malformed BGP UPDATE packet from a connected peer, which triggers transmission of up to a few thousand unintended bytes...

7.5CVSS7.2AI score0.02494EPSS
Exploits0References5
Prion
Prion
added 2017/11/08 8:29 p.m.17 views

Design/Logic Flaw

bgpd in FRRouting FRR before 2.0.2 and 3.x before 3.0.2, as used in Cumulus Linux before 3.4.3 and other products, allows remote attackers to obtain sensitive information via a malformed BGP UPDATE packet from a connected peer, which triggers transmission of up to a few thousand unintended bytes...

5CVSS7.2AI score0.02494EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2017/11/08 8:0 p.m.22 views

CVE-2017-15865

bgpd in FRRouting FRR before 2.0.2 and 3.x before 3.0.2, as used in Cumulus Linux before 3.4.3 and other products, allows remote attackers to obtain sensitive information via a malformed BGP UPDATE packet from a connected peer, which triggers transmission of up to a few thousand unintended bytes...

7.2AI score0.02494EPSS
Exploits0References5
CVE
CVE
added 2017/11/08 8:0 p.m.72 views

CVE-2017-15865

CVE-2017-15865 affects FRR (bgpd) in FRRouting before 2.0.2 and in 3.x before 3.0.2, used in Cumulus Linux before 3.4.3. A malformed BGP UPDATE from a connected peer can trigger transmission of up to thousands of unintended bytes, causing information disclosure. The issue stems from mishandled at...

7.5CVSS7.2AI score0.02494EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2017/11/08 8:0 p.m.26 views

CVE-2017-15865

bgpd in FRRouting FRR before 2.0.2 and 3.x before 3.0.2, as used in Cumulus Linux before 3.4.3 and other products, allows remote attackers to obtain sensitive information via a malformed BGP UPDATE packet from a connected peer, which triggers transmission of up to a few thousand unintended bytes...

7.5CVSS7.3AI score0.02494EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2017/11/08 12:0 a.m.3 views

PT-2017-14247 · Cumulus +2 · Cumulus Linux +2

Name of the Vulnerable Software and Affected Versions: FRRouting FRR versions 2.0.2 and earlier, 3.x before 3.0.2 FRRouting FRR in Cumulus Linux before 3.4.3 Description: The issue allows remote attackers to obtain sensitive information via a malformed BGP UPDATE packet from a connected peer. Thi...

9.8CVSS8.3AI score0.74599EPSS
Exploits1References44
NVD
NVD
added 2017/10/22 6:29 p.m.13 views

CVE-2015-5699

The Switch Configuration Tools Backend clcmdserver in Cumulus Linux 2.5.3 and earlier allows local users to execute arbitrary commands via shell metacharacters in a cl-rctl command label...

7.8CVSS7.9AI score0.00404EPSS
Exploits1References1
Prion
Prion
added 2017/10/22 6:29 p.m.14 views

Command injection

The Switch Configuration Tools Backend clcmdserver in Cumulus Linux 2.5.3 and earlier allows local users to execute arbitrary commands via shell metacharacters in a cl-rctl command label...

7.2CVSS7.8AI score0.00404EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2017/10/20 9:0 p.m.17 views

CVE-2015-5699

The Switch Configuration Tools Backend clcmdserver in Cumulus Linux 2.5.3 and earlier allows local users to execute arbitrary commands via shell metacharacters in a cl-rctl command label...

7.9AI score0.00404EPSS
Exploits1References1
CVE
CVE
added 2017/10/20 9:0 p.m.47 views

CVE-2015-5699

The CVE-2015-5699 entry concerns Cumulus Linux 2.5.3 and earlier, where the Switch Configuration Tools Backend (clcmd_server) is vulnerable to local command injection. The vulnerability arises because clcmd_server executes shell commands appended to the end of a cl-rctl command label if the label...

7.8CVSS7.9AI score0.00404EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.44 views

CVE-2015-5699 - Cumulus Linux's Switch Configuration Tools Backend, clcmd_server, Vulnerable to Local Privilege Escalation

Title =================== Cumulus Linux's Switch Configuration Tools Backend, clcmdserver, Vulnerable to Local Privilege Escalation Summary =================== Cumulus Linux's Switch Configuration Tools Backend, clcmdserver, is vulnerable to local privilege escalation via Command Injection. Cumul...

7.2CVSS1.2AI score0.00404EPSS
Exploits1
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.33 views

Cumulus Linux's Switch Configuration Tools Backend privilege escalation

Privilege escalation via command injection...

7.2CVSS4.2AI score0.00404EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2015/08/18 12:0 a.m.27 views

Cumulus Linux 2.5.3 Privilege Escalation

Title =================== Cumulus Linux's Switch Configuration Tools Backend, clcmdserver, Vulnerable to Local Privilege Escalation Summary =================== Cumulus Linux's Switch Configuration Tools Backend, clcmdserver, is vulnerable to local privilege escalation via Command Injection. Cumul...

0.6AI score0.00404EPSS
Exploits1
Rows per page
Query Builder