Lucene search
+L

26 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-6998

Malicious code in bioql PyPI...

9CVSS8.7AI score0.30492EPSS
Exploits3References3
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-24333

Malicious code in bioql PyPI...

9.1CVSS6.7AI score0.00895EPSS
Exploits0References1
nvd
nvd
added 2024/11/15 3:15 p.m.14 views

CVE-2023-20154

A vulnerability in the external authentication mechanism of Cisco Modeling Labs could allow an unauthenticated, remote attacker to access the web interface with administrative privileges. This vulnerability is due to the improper handling of certain messages that are returned by the associated...

9.1CVSS0.00895EPSS
Exploits0References1
osv
osv
added 2024/11/15 3:15 p.m.6 views

CVE-2023-20154

A vulnerability in the external authentication mechanism of Cisco Modeling Labs could allow an unauthenticated, remote attacker to access the web interface with administrative privileges. This vulnerability is due to the improper handling of certain messages that are returned by the associated...

8.1CVSS5.8AI score0.00895EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/11/15 2:54 p.m.12 views

CVE-2023-20154 Cisco Modeling Labs External Authentication Bypass Vulnerability

A vulnerability in the external authentication mechanism of Cisco Modeling Labs could allow an unauthenticated, remote attacker to access the web interface with administrative privileges. This vulnerability is due to the improper handling of certain messages that are returned by the associated...

9.1CVSS7.2AI score0.00895EPSS
Exploits0References1
cvelist
cvelist
added 2024/11/15 2:54 p.m.24 views

CVE-2023-20154 Cisco Modeling Labs External Authentication Bypass Vulnerability

A vulnerability in the external authentication mechanism of Cisco Modeling Labs could allow an unauthenticated, remote attacker to access the web interface with administrative privileges. This vulnerability is due to the improper handling of certain messages that are returned by the associated...

9.1CVSS0.00895EPSS
Exploits0References1
cnnvd
cnnvd
added 2024/11/15 12:0 a.m.5 views

Cisco Modeling Labs 安全漏洞

Cisco Modeling Labs is a software application from Cisco, Inc. A local network simulation tool that runs on workstations and servers. A security vulnerability exists in Cisco Modeling Labs that stems from the improper handling of certain messages returned by the associated external authentication...

9.1CVSS7.1AI score0.00895EPSS
Exploits0References1
packetstorm
packetstorm
added 2024/08/31 12:0 a.m.280 views

SaltStack Salt Master Server Root Key Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SaltStack Salt Master Server Root Key Disclosure', 'Description' = %q This module exploits unauthenticated access to the prepauthinfo method in t...

9.8CVSS7.4AI score0.96405EPSS
Exploits25
bdu_fstec
bdu_fstec
added 2023/05/04 12:0 a.m.8 views

The vulnerability in the web interface of the Cisco Modeling Labs network modeling tool allows a hacker to gain administrator privileges.

The vulnerability of the Cisco Modeling Labs network modeling tool’s web interface is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to gain access to the web interface with administrator privileges...

9.7CVSS6AI score0.00895EPSS
Exploits0References2Affected Software1
cisa
cisa
added 2023/04/21 12:0 p.m.4 views

Cisco Releases Security Advisories for Multiple Products

Cisco has released security updates for vulnerabilities affecting Industrial Network Director IND, Modeling Labs, StarOS Software, and BroadbandWorks Network Server. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and...

7.8AI score
Exploits0References8
thn
thn
added 2023/04/21 5:41 a.m.9 views

Cisco and VMware Release Security Updates to Patch Critical Flaws in their Products

Cisco and VMware have released security updates to address critical security flaws in their products that could be exploited by malicious actors to execute arbitrary code on affected systems. The most severe of the vulnerabilities is a command injection flaw in Cisco Industrial Network Director...

9.9CVSS8.6AI score0.87077EPSS
Exploits3
cisco
cisco
added 2023/04/19 4:0 p.m.56 views

Cisco Modeling Labs External Authentication Bypass Vulnerability

A vulnerability in the external authentication mechanism of Cisco Modeling Labs could allow an unauthenticated, remote attacker to access the web interface with administrative privileges. This vulnerability is due to the improper handling of certain messages that are returned by the associated...

9.1CVSS9.4AI score0.00895EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2023/04/19 12:0 a.m.6 views

PT-2023-2555 · Cisco · Cisco Modeling Labs

Name of the Vulnerable Software and Affected Versions: Cisco Modeling Labs affected versions not specified Description: The issue is related to the external authentication mechanism of Cisco Modeling Labs, which can be exploited by an unauthenticated, remote attacker to access the web interface...

9.7CVSS7AI score0.00895EPSS
Exploits0References9
zdt
zdt
added 2021/06/23 12:0 a.m.90 views

Cisco Modeling Labs 2.1.1-b19 Remote Command Execution Exploit

Cisco Modeling Labs 2.1.1-b19 Post-Auth RCE Vulnerability CVE-2021-1531 ======= Details ======= Authenticated command injection in the web portal via the X-Original-File-Name header. Tested with portal 'admin' user who does not have a system login or SSH access, but likely works for any user who...

8.8CVSS0.2AI score0.30492EPSS
Exploits3
packetstorm
packetstorm
added 2021/06/23 12:0 a.m.281 views

Cisco Modeling Labs 2.1.1-b19 Remote Command Execution

Cisco Modeling Labs 2.1.1-b19 Post-Auth RCE Vulnerability CVE-2021-1531 ======= Details ======= Authenticated command injection in the web portal via the X-Original-File-Name header. Tested with portal 'admin' user who does not have a system login or SSH access, but likely works for any user who...

9CVSS0.5AI score0.30492EPSS
Exploits3
bdu_fstec
bdu_fstec
added 2021/05/24 12:0 a.m.39 views

The vulnerability of the web interface of the Cisco Modeling Labs network modeling tool allows a perpetrator to execute arbitrary commands.

The vulnerability of the Cisco Modeling Labs network modeling tool’s web interface is related to the implementation or modification of arguments. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

9CVSS7.9AI score0.30492EPSS
Exploits3References3Affected Software1
osv
osv
added 2021/05/22 7:15 a.m.5 views

CVE-2021-1531

A vulnerability in the web UI of Cisco Modeling Labs could allow an authenticated, remote attacker to execute arbitrary commands with the privileges of the web application on the underlying operating system of an affected Cisco Modeling Labs server. This vulnerability is due to insufficient...

8.8CVSS6.1AI score0.30492EPSS
Exploits3References2
nvd
nvd
added 2021/05/22 7:15 a.m.14 views

CVE-2021-1531

A vulnerability in the web UI of Cisco Modeling Labs could allow an authenticated, remote attacker to execute arbitrary commands with the privileges of the web application on the underlying operating system of an affected Cisco Modeling Labs server. This vulnerability is due to insufficient...

9CVSS0.30492EPSS
Exploits3References2
prion
prion
added 2021/05/22 7:15 a.m.13 views

Input validation

A vulnerability in the web UI of Cisco Modeling Labs could allow an authenticated, remote attacker to execute arbitrary commands with the privileges of the web application on the underlying operating system of an affected Cisco Modeling Labs server. This vulnerability is due to insufficient...

9CVSS8.9AI score0.30492EPSS
Exploits3References2Affected Software1
cvelist
cvelist
added 2021/05/22 6:45 a.m.15 views

CVE-2021-1531 Cisco Modeling Labs Web UI Command Injection Vulnerability

A vulnerability in the web UI of Cisco Modeling Labs could allow an authenticated, remote attacker to execute arbitrary commands with the privileges of the web application on the underlying operating system of an affected Cisco Modeling Labs server. This vulnerability is due to insufficient...

8.8CVSS9AI score0.30492EPSS
Exploits3References2
Rows per page
Query Builder