18 matches found
EUVD-2021-6603
Malicious code in bioql PyPI...
Cisco IOS XR Software SSH Privilege Escalation (cisco-sa-iosxr-ssh-privesc-eWDMKew3)
According to its self-reported version, Cisco IOS XR is affected by a vulnerability. - A vulnerability in the SSH client feature of Cisco IOS XR Software for Cisco 8000 Series Routers and Cisco Network Convergence System NCS 540 Series and 5700 Series Routers could allow an authenticated, local...
CVE-2024-20320
A vulnerability in the SSH client feature of Cisco IOS XR Software for Cisco 8000 Series Routers and Cisco Network Convergence System NCS 540 Series and 5700 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to...
CVE-2024-20320
CVE-2024-20320 affects Cisco IOS XR Software on Cisco 8000 Series Routers and NCS 540/5700 Series; the issue is due to insufficient validation of arguments in the SSH client CLI command, allowing an authenticated, low-privileged attacker to escalate to root on the device. Cisco states software up...
The vulnerability in the packet management subsystem of the Remote Package Manager (RPM) of the Cisco IOS XR network operating system for Cisco 8000 series routers allows a attacker to access the Redis database running on the NOSi container.
The vulnerability of the package management subsystem of the Remote Package Manager RPM in Cisco IOS XR network operating systems for Cisco 8000 series routers is related to the exposure of protected information. Exploiting this vulnerability could allow an attacker to gain access to the Redis...
CVE-2021-34709 Cisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification Vulnerabilities
Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...
CVE-2021-34709
Cisco IOS XR image verification vulnerabilities (CVE-2021-34709) affect Cisco Network Convergence System 540 Series Routers and Cisco IOS XR Software for Cisco 8000 Series Routers, specifically when using NCS540L images. The flaw allows an authenticated, local attacker to execute arbitrary code o...
CVE-2021-34708 Cisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification Vulnerabilities
Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...
Cisco IOS XR Software for 8000 Series Routers Network Convergence System 540 Series Routers Privilege Escalation (cisco-sa-iosxr-pe-QpzCAePe)
According to its self-reported version, Cisco IOS XR Software for the Cisco 8000 Series Routers and Network Convergence System 540 Series Routers running NCS540L software images is affected by an privilege escalation vulnerability in its CLI command due to insufficient validation of command line...
Cisco IOS XR Software for Cisco 8000 and NCS 540 Routers Image Verification Vulnerabilities (cisco-sa-ioxr-l-zNhcGCBt)
According to its self-reported version, the Cisco IOS XR Software is affected by multiple vulnerabilities that allow an authenticated, local attacker to execute unsigned code during the boot process, as follows: - A vulnerability in the GRUB boot loader of Cisco NCS 540 Series Routers, only when...
The vulnerability of the file checking function of Cisco IOS XR routers from Network Convergence System’s 540 Series and Cisco 8000 Series allows a hacker to execute arbitrary code.
The vulnerability of the file checking function for Cisco IOS XR routers from the Network Convergence System 540 Series and Cisco 8000 Series is related to errors in the cryptographic signature verification. Exploiting this vulnerability can allow a perpetrator to execute arbitrary code...
The vulnerability of the Grub loader of Cisco IOS XR operating systems and Network Convergence System 540 Series routers, as well as Cisco 8000 Series routers, allows a hacker to execute arbitrary code.
The vulnerability of the Grub loader in Cisco IOS XR routers from the Network Convergence System 540 Series and Cisco 8000 Series is related to errors in checking the cryptographic signature. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
Design/Logic Flaw
Multiple vulnerabilities in Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for the Cisco 8000 Series Routers could allow an authenticated, local attacker to execute unsigned code during the boot process on...
CVE-2021-1370
CVE-2021-1370 affects Cisco IOS XR Software on Cisco 8000 Series Routers and NCS540L software images. A vulnerability in a CLI command allows an authenticated, local attacker to escalate privileges to root due to insufficient validation of command line arguments. Exploitation requires a valid acc...
CVE-2021-1136 Cisco IOS XR Software for Cisco 8000 Series Routers and Network Convergence System 540 Series Routers Image Verification Vulnerabilities
Multiple vulnerabilities in Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for the Cisco 8000 Series Routers could allow an authenticated, local attacker to execute unsigned code during the boot process on...
Cisco IOS XR Software for Cisco 8000 Series Routers and Network Convergence System 540 Series Routers Privilege Escalation Vulnerability
A vulnerability in a CLI command of Cisco IOS XR Software for the Cisco 8000 Series Routers and Network Convergence System 540 Series Routers running NCS540L software images could allow an authenticated, local attacker to elevate their privilege to root. To exploit this vulnerability, an attacker...
Multiple Cisco Products Data Forgery Issue Vulnerabilities
The Cisco 8000 Series Router and the Cisco Network Convergence System 540 Series Routers are both router devices from Cisco USA. A data forgery vulnerability exists in Cisco IOS XR on multiple Cisco routers. The vulnerability is due to an unsigned script in the ISO that is verified without...
Cisco Video Surveillance 8000 Series IP Cameras 缓冲区错误漏洞
The Cisco Video Surveillance 8000 series is a video surveillance IP camera from Cisco. A denial of service vulnerability exists in the Cisco Discovery Protocol implementation of the Cisco Video Surveillance 8000 Series prior to version 1.0.9-8, which can be exploited by an attacker to cause the...