64 matches found
CVE-2023-20261
A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary files from an affected system. This vulnerability is due to improper validation of parameters that are sent to the web UI. An attacker could exploit this vulnerabilit...
CVE-2023-20261
A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary files from an affected system. This vulnerability is due to improper validation of parameters that are sent to the web UI. An attacker could exploit this vulnerabilit...
Cisco Catalyst SD-WAN Manager Local File Inclusion (cisco-sa-sdwan-lfi-OWLbKUGe)
According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. - A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary files from an affected system. This vulnerability is due to...
The vulnerability of the smb2_find_context_vals() function in the fs/ksmbd/oplock.c file of the KSMBD file system in the Linux operating system allows a attacker to gain access to protected information or cause service failures.
The vulnerability of the KSMBD file system in Linux operating systems relates to reading data beyond the allocated buffer. Exploiting this vulnerability can allow an attacker to gain access to protected information or cause service failures...
The vulnerability of the ntfs_trim_fs() function in the fs/ntfs3/bitmap.c component of Linux operating systems allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the ntfstrimfs function in the fs/ntfs3/bitmap.c component of Linux operating systems is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...
SUSE CVE-2017-0750
A elevation of privilege vulnerability in the Upstream Linux file system. Product: Android. Versions: Android kernel. Android ID: A-36817013...
SUSE CVE-2018-11729
The libfsntfsmftentryreadheader function in libfsntfsmftentry.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted ntfs file. NOTE: the vendor has disputed this as described in libyal/libfsntfs issue 8 on GitHub...
PT-2023-12766 · Nokia · Asik Airscale
Name of the Vulnerable Software and Affected Versions: Nokia ASIK AirScale system module versions 474021A.101 through 474021A.102 Description: A vulnerability exists in Nokia’s ASIK AirScale system module that could allow an attacker to place a script on the file system accessible from Linux. A...
Fedora: Security Advisory for cifs-utils (FEDORA-2022-34de4f833d)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
GateManager Path Traversal Vulnerability
GateManager is a cloud server product from Secomea. A directory traversal vulnerability in the file upload feature in all versions of GateManager prior to 92c allows an authenticated attacker with administrative privileges to read and write arbitrary files on the Linux file system...
Directory traversal
A directory traversal vulnerability exists in the file upload function of the GateManager that allows an authenticated attacker with administrative permissions to read and write arbitrary files in the Linux file system. This issue affects: GateManager all versions prior to 9.2c...
USN-4483-1: Linux kernel vulnerabilities
Chuhong Yuan discovered that go7007 USB audio device driver in the Linux kernel did not properly deallocate memory in some failure conditions. A physically proximate attacker could use this to cause a denial of service memory exhaustion. CVE-2019-20810 Fan Yang discovered that the mremap...
Cisco IOS XE Software Privileged EXEC Mode Root Shell Access (cisco-sa-20180926-privesc)
According to its self-reported version, Cisco IOS XE Software is affected by a vulnerability in the CLI parser due to the affected software improperly sanitizing command arguments to prevent modifications to the underlying Linux file system on a device. An authenticated, local attacker who has...
CVE-2017-0750
A elevation of privilege vulnerability in the Upstream Linux file system. Product: Android. Versions: Android kernel. Android ID: A-36817013...
CVE-2017-0750
A elevation of privilege vulnerability in the Upstream Linux file system. Product: Android. Versions: Android kernel. Android ID: A-36817013...
DEBIAN-CVE-2014-3641
The 1 GlusterFS and 2 Linux Smbfs drivers in OpenStack Cinder before 2014.1.3 allows remote authenticated users to obtain file data from the Cinder-volume host by cloning and attaching a volume with a crafted qcow2 header...
CVE-2013-4362
WEB-DAV Linux File System davfs2 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in 1 kernelinterface.c and 2 mountdavfs.c, related to the "system" function...
Design/Logic Flaw
WEB-DAV Linux File System davfs2 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in 1 kernelinterface.c and 2 mountdavfs.c, related to the "system" function...
CVE-2013-4362
WEB-DAV Linux File System davfs2 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in 1 kernelinterface.c and 2 mountdavfs.c, related to the "system" function...
Fedora Update for cifs-utils FEDORA-2012-6375
Check for the Version of cifs-utils OpenVAS Vulnerability Test Fedora Update for cifs-utils FEDORA-2012-6375 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...