CVE-2018-0141

A vulnerability in Cisco Prime Collaboration Provisioning PCP Software 11.6 could allow an unauthenticated, local attacker to log in to the underlying Linux operating system. The vulnerability is due to a hard-coded account password on the system. An attacker could exploit this vulnerability by...

Hardcoded credentials

A vulnerability in Cisco Prime Collaboration Provisioning PCP Software 11.6 could allow an unauthenticated, local attacker to log in to the underlying Linux operating system. The vulnerability is due to a hard-coded account password on the system. An attacker could exploit this vulnerability by...

Schneider Electric Pelco Sarix Professional Unauthorized Operation Vulnerability

The Schneider Electric Pelco Sarix Professional is a video surveillance device from Schneider Electric France. A security vulnerability exists in the Schneider Electric Pelco Sarix Professional using firmware prior to version 3.29.67, which stems from the program failing to perform authentication...

foreman: Stored XSS vulnerability in remote execution plugin

A flaw was found in foreman 1.5.1. The remote execution plugin runs commands on hosts over SSH from the Foreman web UI. When a job is submitted that contains HTML tags, the console output shown in the web UI does not escape the output causing any HTML or JavaScript to run in the user's browser. T...

CVE-2018-5473

An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in GE D60 Line Distance Relay devices running firmware Version 7.11 and prior. The SSH functions of the device are vulnerable to buffer overflow conditions that may allow a remote attacker to execute...

The vulnerability of the command shell of the Cisco Identity Services Engine (ISE) platform allows a attacker to execute arbitrary commands with extended privileges.

The vulnerability of the Cisco Identity Services Engine ISE management platform’s command shell is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary CLI commands with extended privileges using the SSH protocol...

freeSSHd Elevation of Privilege Vulnerability

FreeSSHd is a free SSH server for Windows. A security vulnerability exists in FreeSSHd version 1.3.1. An attacker can exploit the vulnerability to start processes with elevated privileges...

The vulnerability of the auth_password function in the sshd service of the OpenSSH security tool allows a hacker to induce a service failure.

The vulnerability of the authpassword function auth-passwd.c in the sshd service of the OpenSSH encryption protection tool exists due to insufficient input handling mechanisms lack of password length restrictions for authentication. Exploiting this vulnerability allows a malicious actor to cause ...

The vulnerability of the centralized version control system CVS lies in its improper handling of data when interacting with a remote repository via SSH protocol. This allows a malicious actor to execute arbitrary code.

The vulnerability of the centralized version control system CVS is related to improper data processing when interacting with a remote repository via SSH protocol. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted hostname in the repository’...

CVE-2018-6000

An issue was discovered in AsusWRT before 3.0.0.4.38410007. The dovpnuploadpost function in router/httpd/web.c in vpnupload.cgi provides functionality for setting NVRAM configuration values, which allows attackers to set the admin password and launch an SSH daemon or enable infosvr command mode,...

Sophos XG Firewall SFOS Logging Subsystem Cross-Site Scripting Vulnerability

Sophos XG Firewall is a firewall appliance from Sophos UK.SFOS is the operating system that runs on it.Logging subsystem is one of the logging subsystems. A cross-site scripting vulnerability exists in the WAF log page of the webadmin interface of the Logging subsystem in SFOS versions prior to...

Memory leak vulnerability in multiple Huawei products (CNVD-2018-00338)

Huawei DP300, RP200, TE30/40/50/60, and TP3106/3206 are Huawei's all-in-one desktop and high-definition videoconferencing products for high-end customers. A memory leak vulnerability exists in multiple Huawei products, which is due to the program failing to adequately verify messages. An...

CVE-2017-18001

Trustwave Secure Web Gateway SWG through 11.8.0.27 allows remote attackers to append an arbitrary public key to the device's SSH Authorized Keys data, and consequently obtain remote root access, via the publicKey parameter to the /sendKey URI...

CVE-2017-17877

An issue was discovered in Valve Steam Link build 643. When the SSH daemon is enabled for local development, the device is publicly available via IPv6 TCP port 22 over the internet with stateless address autoconfiguration by default, which makes it easier for remote attackers to obtain access by...

The vulnerability of the SCC microprogramming software for ComfortLink II allows a intruder to gain unauthorized access to the device and obtain root privileges.

The vulnerability of the SCC microprogramming software for ComfortLink II lies in the execution of pre-set configuration data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to the device with root privileges, using the SSH protocol...

[SECURITY] Fedora 25 Update: openssh-7.4p1-5.fc25

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

[SECURITY] Fedora 27 Update: openssh-7.6p1-2.fc27

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

Fossil Arbitrary Command Execution Vulnerability

Fossil is a simple, reliable distributed software configuration management system. An arbitrary command execution vulnerability exists in httptransport.c in Fossil before 2.4. A user-assisted remote attacker can exploit this vulnerability to execute arbitrary commands via an ssh URL with an initi...

DEBIAN-CVE-2017-17459

httptransport.c in Fossil before 2.4, when the SSH sync protocol is used, allows user-assisted remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-14176,...

UBUNTU-CVE-2017-17459

httptransport.c in Fossil before 2.4, when the SSH sync protocol is used, allows user-assisted remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-14176,...