Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-49244

Malicious code in bioql PyPI...

7.2CVSS6.4AI score0.00446EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/11 1:50 p.m.7 views

CVE-2024-8531

CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that could compromise the Data Center Expert software when an upgrade bundle is manipulated to include arbitrary bash scripts that are executed as root...

7.2CVSS7.1AI score0.00446EPSS
Exploits0References1
Prion
Prion
added 2023/07/11 9:15 a.m.23 views

Command injection

An improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability CWE-78 in FortiWeb version 7.0.1 and below, 6.4 all versions, version 6.3.18 and below may allow a privileged attacker to execute arbitrary bash commands via crafted cli backup parameters...

5.8CVSS7.3AI score0.01322EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/11 8:49 a.m.15 views

CVE-2023-23777

An improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability CWE-78 in FortiWeb version 7.0.1 and below, 6.4 all versions, version 6.3.18 and below may allow a privileged attacker to execute arbitrary bash commands via crafted cli backup parameters...

7.2CVSS7.8AI score0.01322EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/07/11 8:49 a.m.36 views

CVE-2023-23777

An improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability CWE-78 in FortiWeb version 7.0.1 and below, 6.4 all versions, version 6.3.18 and below may allow a privileged attacker to execute arbitrary bash commands via crafted cli backup parameters...

7.2CVSS7.6AI score0.01322EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.33 views

K04234247: Resource Administrator or Administrator role authenticated local command execution vulnerability CVE-2021-23012

Security Advisory Description Lack of input validation for items used in system support functionality may allow users granted either "Resource Administrator" or "Administrator" roles to execute arbitrary bash commands on BIG-IP. CVE-2021-23012 Impact In a standard BIG-IP deployment, a minor...

8.2CVSS8.4AI score0.00273EPSS
Exploits0Affected Software11
Positive Technologies
Positive Technologies
added 2022/09/28 12:0 a.m.9 views

PT-2022-25627 · Xxl-Job · Xxl-Job

Name of the Vulnerable Software and Affected Versions: XXL-JOB versions 2.2.0 and prior Description: The issue concerns a Command execution vulnerability in background tasks, which is disputed as it may be an intended use case for running arbitrary Bash scripts on behalf of users. Recommendations...

9.8CVSS6.9AI score0.01266EPSS
Exploits1References8
Cvelist
Cvelist
added 2021/05/10 2:8 p.m.26 views

CVE-2021-23012

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x before 14.1.4, and 13.1.x before 13.1.4, lack of input validation for items used in the system support functionality may allow users granted either "Resource Administrator" or "Administrator" roles to execute arbitrary bash...

8.8AI score0.00273EPSS
Exploits0References1
CNVD
CNVD
added 2019/11/19 12:0 a.m.2 views

Xorux Lpar2RRD and Stor2RRD Operating System Command Injection Vulnerability

Bash is a shell command language interpreter written for the GNU Project and running on Unix-like operating systems by American software developer Brian J. Fox. It can read and execute commands from standard input devices or files. An operating system command injection vulnerability exists in Xor...

9CVSS8AI score0.02013EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2019/07/02 12:0 a.m.22 views

F5 Networks BIG-IP : iControl REST vulnerability (K44885536)

Undisclosed iControl REST worker is vulnerable to command injection by an administrator or resource administrator user. This attack is only exploitable on multi-bladed systems. Thevulnerability allows bypass of Appliance mode security on BIG-IP systems by allowing the execution of arbitrary...

7.2CVSS7.4AI score0.01844EPSS
Exploits0References2
Rows per page
Query Builder