CVE-2021-26962

A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform versions: Prior to 8.2.12.0. Vulnerabilities in the AirWave CLI could allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could...

Synology DiskStation Manager 缓冲区错误漏洞

Synology DiskStation Manager DSM is an operating system for use on Network Storage Servers NAS from Synology Inc. of Taiwan, China. This operating system manages information such as data, files, photos, music, and more. A security vulnerability exists in faad in Synology DiskStation Manager...

CVE-2021-26680

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager versions: Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the underlying...

CVE-2021-26680

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager versions: Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the underlying...

CVE-2021-26683

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager versions: Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the underlying...

CVE-2021-26684

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager versions: Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the underlying...

Command injection

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager versions: Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the underlying...

CVE-2021-26679

CVE-2021-26679 describes a remote authenticated command injection vulnerability in Aruba ClearPass Policy Manager. The issue exists in the web-based management interface for versions prior to 6.9.5, 6.8.8-HF1, and 6.7.14-HF1, allowing remote authenticated users to execute arbitrary commands on th...

CVE-2021-26681

A remote authenticated command Injection vulnerability was discovered in Aruba ClearPass Policy Manager versions: Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass CLI could allow remote authenticated users to run arbitrary commands on the underlying host. A successful explo...

CVE-2021-26683

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager versions: Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the underlying...

EyesOfNetwork Code Issue Vulnerability

EyesOfNetwork EON is an open source, free IT monitoring solution from the EyesOfNetwork community. The solution provides features such as a business process configuration tool, generating pop-up windows when events occur in the active queue, and more. A security vulnerability exists in...

CVE-2021-27231

CVE-2021-27231 affects Hestia Control Panel 1.3.5 and below in a shared-hosting environment. The vulnerability allows remote authenticated users to create a subdomain for a different customer’s domain name, leading to spoofing of services or email messages. The provided documents describe the iss...

CVE-2021-27201

Endian Firewall Community aka EFW 3.3.2 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in a backup comment...

CVE-2021-27201

CVE-2021-27201 affects Endian Firewall Community (EFW) 3.3.2. The vulnerability allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in a backup comment. The connected sources (NVD, Red Hat, CVE listing) confirm the issue; no remediation details are provided...

CVE-2020-4954

IBM Spectrum Protect Operations Center 7.1 and 8.1 could allow a remote attacker to bypass authentication restrictions, caused by improper session validation . By using the configuration panel to obtain a valid session using an attacker controlled IBM Spectrum Protect server, an attacker could...

Oracle MySQL Server <= 5.1.65 / 5.5 <= 5.5.27 Security Update (cpujan2013) - Linux

Oracle MySQL Server is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

Access Control Error Vulnerability in Multiple Cisco Products

Cisco RV016 Multi-WAN VPN Router is a VPN Virtual Private Network router. RV042 Dual WAN VPN Router is a VPN Virtual Private Network router. The RV042G Dual Gigabit WAN VPN Router is a VPN Virtual Private Network router. An access control error vulnerability exists in the Cisco Small Business...

Security Vulnerabilities in Multiple Cisco Products

Cisco RV016 Multi-WAN VPN Router is a VPN Virtual Private Network router. RV042 Dual WAN VPN Router is a VPN Virtual Private Network router. The RV042G Dual Gigabit WAN VPN Router is a VPN Virtual Private Network router. A security vulnerability exists in the Cisco Small Business RV016, RV042,...

Security Vulnerabilities in Multiple Cisco Products

Cisco RV016 Multi-WAN VPN Router is a VPN Virtual Private Network router. RV042 Dual WAN VPN Router is a VPN Virtual Private Network router. The RV042G Dual Gigabit WAN VPN Router is a VPN Virtual Private Network router. A security vulnerability exists in the Cisco Small Business RV016, RV042,...

Security Vulnerabilities in Multiple Cisco Products

Cisco RV016 Multi-WAN VPN Router is a VPN Virtual Private Network router. RV042 Dual WAN VPN Router is a VPN Virtual Private Network router. The RV042G Dual Gigabit WAN VPN Router is a VPN Virtual Private Network router. A security vulnerability exists in the Cisco Small Business RV016, RV042,...