12 matches found
EUVD-2020-24651
Malware in sbrugna...
EUVD-2001-0366
Malware in sbrugna...
EUVD-2022-46453
Malicious code in bioql PyPI...
EUVD-2025-24880
Malicious code in bioql PyPI...
CVE-2025-20220
A vulnerability in the CLI of Cisco Secure Firewall Management Center FMC Software and Cisco Secure Firewall Threat Defense FTD Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as root. This vulnerability is due to improper inp...
CVE-2025-48461
Successful exploitation of the vulnerability could allow an unauthenticated attacker to conduct brute force guessing and account takeover as the session cookies are predictable, potentially allowing the attackers to gain root, admin or user access and reset passwords...
CVE-2025-20278
CVE-2025-20278 affects Cisco Unified Communications products. The vulnerability is a command-injection flaw in the CLI due to insufficient validation of command arguments, allowing an authenticated local attacker to execute arbitrary OS commands as root on an affected device. Exploitation require...
CVE-2025-20200
The CVE-2025-20200 entry describes a privilege-escalation vulnerability in Cisco IOS XE Software CLI. An authenticated local attacker with privilege level 15 can exploit insufficient input validation when processing specific configuration commands to elevate to root on the device’s operating syst...
CVE-2025-20197
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...
USN-7117-2: needrestart regression
USN-7117-1 fixed vulnerabilities in needrestart. The update introduced a regression in needrestart. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Qualys discovered that needrestart passed unsanitized data to a library libmodule-scandeps-perl which...
CloudForms: RCE vulnerability in NFS schedule backup
A flaw was found in the CloudForms management engine, which triggered remote code execution through NFS schedule backup. An attacker logged into the management console could use this flaw to execute arbitrary shell commands on the CloudForms server as root...
intersystems.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 07.01.03: http://www.idefense.com/advisory/07.01.03.txt Caché Insecure Installation File and Directory Permissions July 1, 2003 I. BACKGROUND InterSystems Corp.s Caché is a post-relational database for e-applications that i...