280 matches found
EUVD-2021-24036
Malware in sbrugna...
EUVD-2021-16347
Malware in sbrugna...
EUVD-2020-17731
Malware in sbrugna...
EUVD-2016-5957
Malware in sbrugna...
EUVD-2019-5556
Malware in sbrugna...
EUVD-2016-1428
Malware in sbrugna...
EUVD-2016-7788
Malware in sbrugna...
EUVD-2022-6224
Malicious code in bioql PyPI...
EUVD-2022-38826
Malicious code in bioql PyPI...
EUVD-2022-5620
Malicious code in bioql PyPI...
EUVD-2022-49221
Malicious code in bioql PyPI...
CVE-2025-36606
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2018-16118
A shell escape vulnerability in /webconsole/APIController in the API Configuration component of Sophos XG firewall 17.0.8 MR-8 allows remote attackers to execute arbitrary OS commands via shell metachracters in the "X-Forwarded-for" HTTP header...
CVE-2018-16117
A shell escape vulnerability in /webconsole/Controller in Admin Portal of Sophos XG firewall 17.0.8 MR-8 allow remote authenticated attackers to execute arbitrary OS commands via shell metacharacters in the "dbName" POST parameter...
CVE-2016-4991
Input passed to the Pdf function is shell escaped and passed to childprocess.exec during PDF rendering. However, the shell escape does not properly encode all special characters, namely, semicolon and curly braces. This can be abused to achieve command execution. This problem affects nodepdf 1.3....
CVE-2021-31581
The restricted shell provided by Akkadian Provisioning Manager Engine PME can be escaped by abusing the 'Edit MySQL Configuration' command. This command launches a standard vi editor interface which can then be escaped. This issue was resolved in Akkadian OVA appliance version 3.0 and later,...
CVE-2020-11075
In Anchore Engine version 0.7.0, a specially crafted container image manifest, fetched from a registry, can be used to trigger a shell escape flaw in the anchore engine analyzer service during an image analysis process. The image analysis operation can only be executed by an authenticated user vi...
CVE-2023-40146
A privilege escalation vulnerability exists in the /bin/login functionality of Peplink Smart Reader v1.2.0 in QEMU. A specially crafted command line argument can lead to a limited-shell escape and elevated capabilities. An attacker can authenticate with hard-coded credentials and execute unblocke...
CVE-2023-40146
A privilege escalation vulnerability exists in the /bin/login functionality of Peplink Smart Reader v1.2.0 in QEMU. A specially crafted command line argument can lead to a limited-shell escape and elevated capabilities. An attacker can authenticate with hard-coded credentials and execute unblocke...
CVE-2023-40146
CVE-2023-40146 is a privilege escalation in Peplink Smart Reader v1.2.0 (QEMU) where a specially crafted argument to /bin/login can trigger a limited-shell escape and elevated capabilities. An attacker can authenticate with hard-coded credentials and execute unblocked default BusyBox functionalit...