31 matches found
Dell Virtual Appliance Manager Command Injection Vulnerability (CNVD-2024-0018660)
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. A command injection vulnerability exists in Dell Virtual Appliance Manager, which can be exploited by an attacker to cause arbitrary operating system commands to be executed on an affected system...
Dell Virtual Appliance Manager Command Injection Vulnerability
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. A command injection vulnerability exists in Dell Virtual Appliance Manager, which can be exploited by an attacker to cause arbitrary operating system commands to be executed on an affected system...
Dell Virtual Appliance Manager Command Injection Vulnerability (CNVD-2024-0018561)
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. A command injection vulnerability exists in Dell Virtual Appliance Manager, which can be exploited by an attacker to cause arbitrary operating system commands to be executed on an affected system...
Dell Virtual Appliance Manager Arbitrary File Read Vulnerability
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. An arbitrary file read vulnerability exists in Dell Virtual Appliance Manager, which can be exploited by an attacker to read arbitrary files from the target system...
Dell Virtual Appliance Manager Information Disclosure Vulnerability
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. An information disclosure vulnerability exists in Dell Virtual Appliance Manager, which could be exploited by an attacker to obtain sensitive information that could be used in further attacks...
Dell Virtual Appliance Manager Arbitrary File Read Vulnerability (CNVD-2024-0018759)
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. An arbitrary file read vulnerability exists in Dell Virtual Appliance Manager, which can be exploited by an attacker to read arbitrary files from the target system...
Dell Virtual Appliance Manager 安全漏洞
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. An information disclosure vulnerability exists in Dell Virtual Appliance Manager, which could be exploited by an attacker to obtain sensitive information that could be used in further attacks...
Dell Virtual Appliance Manager 安全漏洞
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. An arbitrary file read vulnerability exists in Dell Virtual Appliance Manager, which can be exploited by an attacker to read arbitrary files from the target system...
Dell Virtual Appliance Manager 路径遍历漏洞
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. An arbitrary file read vulnerability exists in Dell Virtual Appliance Manager, which can be exploited by an attacker to read arbitrary files from the target system...
Dell Virtual Appliance Manager 操作系统命令注入漏洞
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. A command injection vulnerability exists in Dell Virtual Appliance Manager, which can be exploited by an attacker to cause arbitrary operating system commands to be executed on an affected system...
Dell Virtual Appliance Manager 操作系统命令注入漏洞
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. A command injection vulnerability exists in Dell Virtual Appliance Manager, which can be exploited by an attacker to cause arbitrary operating system commands to be executed on an affected system...
Dell Virtual Appliance Manager 操作系统命令注入漏洞
Dell Virtual Appliance Manager is a virtual appliance manager from Dell USA. A command injection vulnerability exists in Dell Virtual Appliance Manager, which can be exploited by an attacker to cause arbitrary operating system commands to be executed on an affected system...
CVE-2021-31580
The restricted shell provided by Akkadian Provisioning Manager Engine PME can be bypassed by switching the OpenSSH channel from shell to exec and providing the ssh client a single execution parameter. This issue was resolved in Akkadian OVA appliance version 3.0 and later, Akkadian Provisioning...
CVE-2021-31579
Akkadian Provisioning Manager Engine PME ships with a hard-coded credential, akkadianuser:haakkadianpassword. This issue was resolved in Akkadian OVA appliance version 3.0 and later, Akkadian Provisioning Manager 5.0.2 and later, and Akkadian Appliance Manager 3.3.0.314-4a349e0 and later...
Design/Logic Flaw
The restricted shell provided by Akkadian Provisioning Manager Engine PME can be escaped by abusing the 'Edit MySQL Configuration' command. This command launches a standard vi editor interface which can then be escaped. This issue was resolved in Akkadian OVA appliance version 3.0 and later,...
CVE-2021-31581
CVE-2021-31581 affects Akkadian Provisioning Manager Engine (PME)/Appliance Manager. The vulnerability arises from a restricted shell that can be escaped by abusing the Edit MySQL Configuration flow, which drops the user into a vi editor interface and allows shell escapes. This leads to informati...
CVE-2021-31580 Akkadian Provisioning Manager Engine (PME) Shell Escape via 'exec' command
The restricted shell provided by Akkadian Provisioning Manager Engine PME can be bypassed by switching the OpenSSH channel from shell to exec and providing the ssh client a single execution parameter. This issue was resolved in Akkadian OVA appliance version 3.0 and later, Akkadian Provisioning...
CVE-2021-31580
CVE-2021-31580 affects Akkadian Provisioning Manager Engine (PME) and related components, where the OpenSSH channel can be switched from shell to exec, causing a bypass of the restricted shell and enabling command execution within a bash context. The root cause is a misconfigured restricted shell...
CVE-2021-31579
CVE-2021-31579 affects Akkadian Provisioning Manager Engine (PME) where a hard-coded credential (akkadianuser:haakkadianpassword) exists. Exploitation can enable root-level shell access when combined with other issues (CVE-2021-31580/81) and, in some contexts, expose sensitive data (CVE-2021-3158...
CVE-2015-2746
The network diagnostics tool CommandLineServlet in the Appliance Manager command line utility CLU in Websense TRITON 7.8.3 and V-Series appliances before 7.8.4 Hotfix 02 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the "second" parameter of a command...