62 matches found
EUVD-2012-0388
Malware in sbrugna...
EUVD-2015-6336
Malware in sbrugna...
EUVD-2011-2564
Malware in sbrugna...
EUVD-2009-0630
Malware in sbrugna...
CVE-2012-1357
The igmpsnooporibfillsourceupdate function in the IGMP process in NX-OS 5.0 and 5.1 on Cisco Nexus 5000 series switches allows remote attackers to cause a denial of service device reload via IGMP packets, aka Bug ID CSCts46521...
CVE-2013-1192
The JAR files on Cisco Device Manager for Cisco MDS 9000 devices before 5.2.8, and Cisco Device Manager for Cisco Nexus 5000 devices, allow remote attackers to execute arbitrary commands on Windows client machines via a crafted element-manager.jnlp file, aka Bug IDs CSCty17417 and CSCty10802...
CVE-2009-0627
Unspecified vulnerability in Cisco NX-OS before 4.01aN21, when running on Nexus 5000 platforms, allows remote attackers to cause a denial of service crash via an unspecified "sequence of TCP packets" related to "TCP State manipulation," possibly related to separate attacks against CVE-2008-4609...
Cisco NX-OS Remote TCP State Manipulation Denial of Service (CVE-2009-0627)
Unspecified vulnerability in Cisco NX-OS before 4.01aN21, when running on Nexus 5000 platforms, allows remote attackers to cause a denial of service crash via an unspecified sequence of TCP packets related to TCP State manipulation, possibly related to separate attacks against CVE-2008-4609. This...
Cisco NX-OS Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2012-1357)
The igmpsnooporibfillsourceupdate function in the IGMP process in NX-OS 5.0 and 5.1 on Cisco Nexus 5000 series switches allows remote attackers to cause a denial of service device reload via IGMP packets, aka Bug ID CSCts46521. This plugin only works with Tenable.ot. Please visit...
Cisco Nexus 5000, 6000, and 7000 Series Switches Software IS-IS Packet Processing Denial of Service (CVE-2017-3804)
A vulnerability in Intermediate System-to-Intermediate System IS-IS protocol packet processing of Cisco Nexus 5000, 6000, and 7000 Series Switches software could allow an unauthenticated, adjacent attacker to cause a reload of the affected device. Switches in the FabricPath domain crash because o...
Cisco Multiple Vulnerabilities in NX-OS-Based Products (CVE-2014-3261)
Buffer overflow in the Smart Call Home implementation in Cisco NX-OS on Fabric Interconnects in Cisco Unified Computing System 1.4 before 1.41i, NX-OS 5.0 before 5.03U22 on Nexus 3000 devices, NX-OS 4.1 before 4.12E11l on Nexus 4000 devices, NX-OS 5.x before 5.13N11 on Nexus 5000 devices, NX-OS 5...
Code Execution Vulnerability in Multiple Cisco Products
Cisco Nexus 2000 Series Fabric Extenders and so on are the products of the American Cisco Cisco company.Cisco Nexus 2000 Series Fabric Extenders is a Nexus 2000 series array extender.Nexus 5000 Series Nexus 5000 Series Switches is a 5000 series switch. A code execution vulnerability exists in the...
Design/Logic Flaw
A vulnerability in Cisco NX-OS System Software patch installation could allow an authenticated, local attacker to write a file to arbitrary locations. The vulnerability is due to insufficient restrictions in the patch installation process. An attacker could exploit this vulnerability by installin...
CVE-2017-12338
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to read the contents of arbitrary files. The vulnerability is due to insufficient input validation for a specific CLI command. An attacker could exploit this vulnerability by issuing a crafted...
CVE-2017-12330
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation of command arguments to the CLI parser. An attacker could exploit this vulnerability by injecting...
Command injection
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation of command arguments. An attacker could exploit this vulnerability by injecting crafted command...
Input validation
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to read the contents of arbitrary files. The vulnerability is due to insufficient input validation for a specific CLI command. An attacker could exploit this vulnerability by issuing a crafted...
CVE-2017-12332
A vulnerability in Cisco NX-OS System Software patch installation could allow an authenticated, local attacker to write a file to arbitrary locations. The vulnerability is due to insufficient restrictions in the patch installation process. An attacker could exploit this vulnerability by installin...
Command injection
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. An attacker would need valid administrator credentials to perform this exploit. The vulnerability is due to insufficient input validation of command...
CVE-2017-12332
CVE-2017-12332 affects Cisco NX-OS System Software on multiple Cisco Nexus series switches and UCS Manager. The issue stems from insufficient restrictions in the patch installation process, allowing an authenticated, local attacker with valid administrator credentials to install a crafted patch i...