PT-2022-1961 · Cisco · Cisco Fxos +2

Name of the Vulnerable Software and Affected Versions: Cisco FXOS Software and Cisco NX-OS Software affected versions not specified Description: A vulnerability in the Cisco Discovery Protocol service could allow an unauthenticated, adjacent attacker to cause the service to restart, resulting in ...

Cisco UCS Manager 2.2(1d) - Remote Command Execution

Exploit Title: Cisco UCS Manager 2.21d - Remote Command Execution Description: An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System UCS Manager before 2.24b, 2.25 before 2.25a, and 3.0 before 3.02e allows remote attackers to execute...

Cisco FXOS Software Cisco Fabric Services DoS (cisco-sa-fxos-nxos-cfs-dos-dAmnymbd)

According to its self-reported version, the Cisco FX-OS Software is affected by a denial of service DoS vulnerability. It exists in Cisco fabric services due to insufficient error handling of Cisco fabric service messages. An unauthenticated, remote attacker can exploit this issue, via sending...

The vulnerability of the command-line interface of the Cisco FX-OS network operating system and the Cisco Firepower Threat Defense (FTD) network switches’ micro-programming software allows a attacker to execute arbitrary commands on the privileged root operating system.

The vulnerability of the command-line interface of the Cisco FX-OS network operating system and the Cisco Firepower Threat Defense FTD network interface micro-programming system exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute...

The vulnerability of the SNMP protocol implementation in NX-OS and FX-OS network operating systems allows a intruder to trigger a maintenance failure.

The vulnerability of SNMP protocol implementations in NX-OS and FX-OS networks exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to trigger a service failure using a specially crafted SNMP packet...

The vulnerability of the command-line interface of Cisco NX-OS and FX-OS allows a attacker to execute arbitrary code with elevated privileges.

The vulnerability of the command-line interface in Cisco NX-OS and FX-OS network operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges on the underlying operating system...

The vulnerability of the command-line interface of networking operating systems FX-OS and NX-OS allows attackers to escalate their privileges and execute arbitrary commands.

The vulnerability of the command-line interface of networking operating systems FX-OS and NX-OS is related to insufficient checking of arguments passed to certain CLI commands. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary commands...

CVE-2017-12277

A vulnerability in the Smart Licensing Manager service of the Cisco Firepower 4100 Series Next-Generation Firewall NGFW and Firepower 9300 Security Appliance could allow an authenticated, remote attacker to inject arbitrary commands that could be executed with root privileges. The vulnerability i...

PT-2017-3406 · Cisco · Cisco Firepower Security

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Security products running FX-OS versions 1.1.3 through 2.0.1 Description: The issue exists due to insufficient input validation of certain Smart Licensing configuration parameters in the Smart Licensing Manager service. This...

Cisco Unified Computing System Manager and FX-OS for Firepower 9000 Series Remote Code Execution Vulnerability

Cisco Unified Computing System Manager and Cisco FX-OS on Firepower 9000 are both products of the U.S. company Cisco Cisco. The former is a set of embedded device management software, it can be Cisco Unified Computing System as a single, highly usable logical entity, from end to end to manage, th...

CVE-2015-6435

An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System UCS Manager before 2.24b, 2.25 before 2.25a, and 3.0 before 3.02e allows remote attackers to execute arbitrary shell commands via a crafted HTTP request, aka Bug ID CSCur90888...

Command injection

An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System UCS Manager before 2.24b, 2.25 before 2.25a, and 3.0 before 3.02e allows remote attackers to execute arbitrary shell commands via a crafted HTTP request, aka Bug ID CSCur90888...

CVE-2015-6435

An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System UCS Manager before 2.24b, 2.25 before 2.25a, and 3.0 before 3.02e allows remote attackers to execute arbitrary shell commands via a crafted HTTP request, aka Bug ID CSCur90888...

CVE-2015-6435

Cisco CVE-2015-6435 describes a remote command execution vulnerability via an unprotected CGI script in Cisco FX-OS on Firepower 9000 devices and Cisco UCS Manager. A crafted HTTP request to the CGI script can allow an unauthenticated attacker to execute arbitrary shell commands. Affected softwar...

EUVD-2015-6376

An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System UCS Manager before 2.24b, 2.25 before 2.25a, and 3.0 before 3.02e allows remote attackers to execute arbitrary shell commands via a crafted HTTP request, aka Bug ID CSCur90888...