Lucene search
K

178 matches found

OSV
OSV
added 2021/09/09 5:15 a.m.4 views

CVE-2021-34708

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...

6.7CVSS6.2AI score0.00183EPSS
Exploits0References1
Prion
Prion
added 2021/09/09 5:15 a.m.17 views

Information disclosure

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...

7.2CVSS6.8AI score0.00183EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/09/09 5:15 a.m.13 views

Information disclosure

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...

6.9CVSS6.7AI score0.00152EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/09/09 5:0 a.m.24 views

CVE-2021-34709 Cisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification Vulnerabilities

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...

6CVSS6.9AI score0.00152EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/09/09 5:0 a.m.10 views

CVE-2021-34709 Cisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification Vulnerabilities

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...

6CVSS7.4AI score0.00152EPSS
Exploits0References1
CVE
CVE
added 2021/09/09 5:0 a.m.65 views

CVE-2021-34709

Cisco IOS XR image verification vulnerabilities (CVE-2021-34709) affect Cisco Network Convergence System 540 Series Routers and Cisco IOS XR Software for Cisco 8000 Series Routers, specifically when using NCS540L images. The flaw allows an authenticated, local attacker to execute arbitrary code o...

6.9CVSS6.6AI score0.00152EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/09/09 5:0 a.m.72 views

CVE-2021-34708

CVE-2021-34708 concerns multiple vulnerabilities in image verification checks on Cisco Network Convergence System (NCS) 540 Series Routers, observable when running Cisco IOS XR NCS540L software images and Cisco IOS XR Software for Cisco 8000 Series Routers. The flaws allow an authenticated, local...

7.2CVSS6.6AI score0.00183EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2021/09/09 5:0 a.m.12 views

CVE-2021-34708 Cisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification Vulnerabilities

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...

6CVSS7.4AI score0.00183EPSS
Exploits0References1
Cisco
Cisco
added 2021/09/08 4:0 p.m.79 views

Cisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification Vulnerabilities

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...

6CVSS6.6AI score0.00183EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/08/25 12:0 a.m.34 views

Cisco Expressway Series and TelePresence Video Communication Server Image Verification RCE (cisco-sa-ewver-c6WZPXRx)

According to its self-reported version, Cisco TelePresence Video Communication Server is affected by a vulnerability in the image verification function that allows an authenticated, remote attacker to execute code with internal user privileges on the underlying operating system. The vulnerability...

9CVSS7.4AI score0.01056EPSS
Exploits0References3
NVD
NVD
added 2021/08/18 8:15 p.m.43 views

CVE-2021-34715

A vulnerability in the image verification function of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow an authenticated, remote attacker to execute code with internal user privileges on the underlying operating system. The vulnerability is due to...

9CVSS0.01056EPSS
Exploits0References1
Prion
Prion
added 2021/08/18 8:15 p.m.28 views

Input validation

A vulnerability in the image verification function of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow an authenticated, remote attacker to execute code with internal user privileges on the underlying operating system. The vulnerability is due to...

9CVSS7.1AI score0.01056EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/08/18 7:40 p.m.40 views

CVE-2021-34715 Cisco Expressway Series and TelePresence Video Communication Server Image Verification Vulnerability

A vulnerability in the image verification function of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow an authenticated, remote attacker to execute code with internal user privileges on the underlying operating system. The vulnerability is due to...

4.7CVSS7.3AI score0.01056EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/08/18 7:40 p.m.17 views

CVE-2021-34715 Cisco Expressway Series and TelePresence Video Communication Server Image Verification Vulnerability

A vulnerability in the image verification function of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow an authenticated, remote attacker to execute code with internal user privileges on the underlying operating system. The vulnerability is due to...

4.7CVSS7.2AI score0.01056EPSS
Exploits0References1
Cisco
Cisco
added 2021/08/18 4:0 p.m.138 views

Cisco Expressway Series and TelePresence Video Communication Server Image Verification Vulnerability

A vulnerability in the image verification function of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow an authenticated, remote attacker to execute code with internal user privileges on the underlying operating system. The vulnerability is due to...

4.7CVSS6AI score0.01056EPSS
Exploits0References1
OSV
OSV
added 2021/05/24 11:2 a.m.2 views

OESA-2021-1192 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access.CVE-2019-14562...

5.5CVSS6.7AI score0.00306EPSS
Exploits0References2
Fedora
Fedora
added 2021/05/05 1:4 a.m.18 views

[SECURITY] Fedora 32 Update: pngcheck-2.4.0-8.fc32

pngcheck verifies the integrity of PNG, JNG and MNG files by checking the internal 32-bit CRCs checksums and decompressing the image data; it can optionally dump almost all of the chunk-level information in the image in human-readable form. For example, it can be used to print the basic statist i...

0.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/04/12 12:0 a.m.47 views

Cisco IOS XE Software ROM Monitor for Industrial Switches Command Injection (cisco-sa-iosxe-romvar-cmd-inj-N56fYbrw)

According to its self-reported version, IOS-XE is affected by a command injection vulnerability due to incorrect validations of specific function arguments passed to a boot script when specific ROMMON variables are set. An unauthenticated, physical attacker can exploit this by setting malicious...

7.2CVSS7.1AI score0.00372EPSS
Exploits0References3
NVD
NVD
added 2021/03/24 9:15 p.m.25 views

CVE-2021-1375

Multiple vulnerabilities in the fast reload feature of Cisco IOS XE Software running on Cisco Catalyst 3850, Cisco Catalyst 9300, and Cisco Catalyst 9300L Series Switches could allow an authenticated, local attacker to either execute arbitrary code on the underlying operating system, install and...

7.2CVSS0.00232EPSS
Exploits0References1
Prion
Prion
added 2021/03/24 9:15 p.m.18 views

Input validation

Multiple vulnerabilities in the fast reload feature of Cisco IOS XE Software running on Cisco Catalyst 3850, Cisco Catalyst 9300, and Cisco Catalyst 9300L Series Switches could allow an authenticated, local attacker to either execute arbitrary code on the underlying operating system, install and...

7.2CVSS6.7AI score0.00232EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder