CVE-2025-45472

Insecure permissions in autodeploy-layer v1.2.0 allows attackers to escalate privileges and compromise the customer cloud account...

CVE-2025-45472

Insecure permissions in autodeploy-layer v1.2.0 allows attackers to escalate privileges and compromise the customer cloud account...

PT-2025-22511 · Unknown · Autodeploy-Layer

Name of the Vulnerable Software and Affected Versions: autodeploy-layer version 1.2.0 Description: The issue is related to insecure permissions, allowing attackers to escalate privileges and compromise the customer cloud account. Recommendations: For autodeploy-layer version 1.2.0, consider...

CVE-2025-45472

The CVE-2025-45472 entry covers insecure permissions in autodeploy-layer v1.2.0, enabling privilege escalation that could compromise the customer cloud account. Multiple sources corroborate that the issue is tied to improper access controls in autodeploy-layer and that it affects at least version...

SAR-AutoDeploy-Layer 安全漏洞

SAR-AutoDeploy-Layer is a Lumigo open source SAR application used to automate the deployment of a Lambda layer to a region for all functions. A security vulnerability exists in SAR-AutoDeploy-Layer v1.2.0 that stems from improper permissions and could lead to elevated privileges and customer clou...

SUSE CVE-2009-2901

The autodeployment process in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20, when autoDeploy is enabled, deploys appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests...

GHSA-HJFH-7C4V-7Q8H Improper Authentication in Apache Tomcat

The autodeployment process in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20, when autoDeploy is enabled, deploys appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests...

Improper Authentication in Apache Tomcat

The autodeployment process in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20, when autoDeploy is enabled, deploys appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests...

Release Notes for Veeam Management Pack 8.0 Update 6

Challenge Release Notes for Veeam Management Pack 8.0 Update 6. NOTE : The Veeam Management Pack 8.0 Update 6 cumulative patches for Veeam Backup & Replication monitoring and VMware vSphere 7.0 monitoring are available through kb2940 and kb3172 correspondingly. Cause Please confirm you are runnin...

Cisco Prime Data Center Network Manager - Arbitrary File Upload

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient include...

Cisco Prime Data Center Network Manager Arbitrary File Upload Vulnerability

Exploit for java platform in category remote exploits require 'msf/core' class Metasploit3 'Cisco Prime Data Center Network Manager Arbitrary File Upload', 'Description' = %q This module exploits a code execution flaw in Cisco Data Center Network Manager. The vulnerability exists in...

Cisco Prime Data Center Network Manager - Arbitrary File Upload (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Cisco Prime Data Center Network Manager Arbitrary File Upload', 'Description' = %q This module exploits a code execution flaw in Cisc...

Cisco Prime Data Center Network Manager Arbitrary File Upload

This module exploits a code execution flaw in Cisco Data Center Network Manager. The vulnerability exists in processImageSave.jsp, which can be abused through a directory traversal and a null byte injection to upload arbitrary files. The autodeploy JBoss application server feature is used to...

CVE-2013-5486

Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager DCNM before 6.21 allows remote attackers to write arbitrary files via the chartid parameter, aka Bug IDs CSCue77035 and CSCue77036. NOTE: this can be leveraged to execute...

Directory traversal

Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager DCNM before 6.21 allows remote attackers to write arbitrary files via the chartid parameter, aka Bug IDs CSCue77035 and CSCue77036. NOTE: this can be leveraged to execute...

CVE-2013-5486

Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager DCNM before 6.21 allows remote attackers to write arbitrary files via the chartid parameter, aka Bug IDs CSCue77035 and CSCue77036. NOTE: this can be leveraged to execute...

CVE-2013-5486

Cisco Prime DCNM DCNM-SAN Server (Cisco Prime DCNM) before 6.2(1) is affected by CVE-2013-5486: a directory traversal in processImageSave.jsp allows remote attackers to write arbitrary files via the chartid parameter, potentially enabling remote code execution through JBoss autodeploy. Affected c...

SuSE 10 Security Update : Tomcat 5 (ZYPP Patch Number 6839)

This update of tomcat5/6 fixes : - Directory traversal vulnerability allowed remote attackers to create or overwrite arbitrary files/dirs with a specially crafted WAR file. CVE-2009-2901: CVSS v2 Base Score: 4.3 When autoDeploy is enabled the autodeployment process deployed appBase files that...

SuSE Security Update: Security update for Tomcat 5 (tomcat5-6841)

This update of tomcat5/6 fixes: CVE-2009-2693: CVSS v2 Base Score: 5.8 CVE-2009-2902: CVSS v2 Base Score: 4.3 Directory traversal vulnerability allowed remote attackers to create or overwrite arbitrary files/dirs with a specially crafted WAR file. CVE-2009-2901: CVSS v2 Base Score: 4.3 When...

PT-2010-1276 · Apache · Apache Tomcat

Name of the Vulnerable Software and Affected Versions: Apache Tomcat versions 5.5.0 through 5.5.28 Apache Tomcat versions 6.0.0 through 6.0.20 Description: The autodeployment process in Apache Tomcat, when autoDeploy is enabled, deploys appBase files that remain from a failed undeploy. This might...