Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-24633

Malware in sbrugna...

4.7CVSS5AI score0.00243EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-1097

Malware in sbrugna...

9CVSS8.6AI score0.03958EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-2277

Malware in sbrugna...

10CVSS6.4AI score0.04733EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-6599

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.01606EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 1:47 a.m.8 views

CVE-2023-20040

A vulnerability in the NETCONF service of Cisco Network Services Orchestrator NSO could allow an authenticated, remote attacker to cause a denial of service DoS on an affected system that is running as the root user. To exploit this vulnerability, the attacker must be a member of the admin group...

5.5CVSS7.2AI score0.01242EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:15 p.m.6 views

CVE-2021-1132

A vulnerability in the API subsystem and in the web-management interface of Cisco Network Services Orchestrator NSO could allow an unauthenticated, remote attacker to access sensitive data. This vulnerability exists because the web-management interface and certain HTTP-based APIs do not properly...

7.5CVSS6.9AI score0.01606EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/18 3:42 p.m.13 views

CVE-2021-1132 Cisco Network Services Orchestrator Path Traversal Vulnerability

A vulnerability in the API subsystem and in the web-management interface of Cisco Network Services Orchestrator NSO could allow an unauthenticated, remote attacker to access sensitive data. This vulnerability exists because the web-management interface and certain HTTP-based APIs do not properly...

5.3CVSS0.01606EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/05/22 12:0 a.m.5 views

The vulnerability of the Tail-f High Availability Cluster Communications (HCC) functional package of the Cisco Network Services Orchestrator (NSO) software allows a perpetrator to execute arbitrary code with root privileges.

The vulnerability of the Tail-f High Availability Cluster Communications HCC functional package of the Cisco Network Services Orchestrator NSO software is related to improper external management of file names or paths. Exploiting this vulnerability could allow a attacker to execute arbitrary code...

7.8CVSS6AI score0.00198EPSS
Exploits0References2Affected Software1
Cisco
Cisco
added 2023/01/11 4:0 p.m.26 views

Cisco Network Services Orchestrator Path Traversal Vulnerability

A vulnerability in the RESTCONF and NETCONF services of Cisco Network Services Orchestrator NSO could allow an authenticated, remote attacker to cause a denial of service DoS on an affected system that is running as the root user. To exploit this vulnerability, the attacker must be a member of th...

5.5CVSS5.7AI score0.01242EPSS
Exploits0References1
Cisco
Cisco
added 2021/08/04 4:0 p.m.80 views

Cisco Network Services Orchestrator CLI Secure Shell Server Privilege Escalation Vulnerability

A vulnerability in Cisco Network Services Orchestrator NSO could allow an authenticated, local attacker to execute arbitrary commands at the level of the account under which Cisco NSO is running, which is root by default. To exploit this vulnerability, an attacker must have a valid account on an...

7.8CVSS8AI score0.00247EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/03/03 12:0 a.m.5 views

PT-2021-2251 · Cisco · Cisco Network Services Orchestrator

Name of the Vulnerable Software and Affected Versions: Cisco Network Services Orchestrator NSO affected versions not specified Description: A vulnerability in the API subsystem and web-management interface of Cisco Network Services Orchestrator NSO could allow an unauthenticated, remote attacker ...

7.5CVSS6.2AI score0.01606EPSS
Exploits0References11
Cvelist
Cvelist
added 2020/06/18 2:17 a.m.14 views

CVE-2020-3362 Cisco Network Services Orchestrator Information Disclosure Vulnerability

A vulnerability in the CLI of Cisco Network Services Orchestrator NSO could allow an authenticated, local attacker to access confidential information on an affected device. The vulnerability is due to a timing issue in the processing of CLI commands. An attacker could exploit this vulnerability b...

4.7CVSS4.5AI score0.00243EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/06/18 2:17 a.m.9 views

CVE-2020-3362 Cisco Network Services Orchestrator Information Disclosure Vulnerability

A vulnerability in the CLI of Cisco Network Services Orchestrator NSO could allow an authenticated, local attacker to access confidential information on an affected device. The vulnerability is due to a timing issue in the processing of CLI commands. An attacker could exploit this vulnerability b...

4.7CVSS6.4AI score0.00243EPSS
Exploits0References1
Cisco
Cisco
added 2018/09/05 4:0 p.m.60 views

Cisco Network Services Orchestrator Network Plug and Play Information Disclosure Vulnerability

A vulnerability in the Cisco Network Plug and Play server component of Cisco Network Services Orchestrator NSO could allow an unauthenticated, remote attacker to gain unauthorized access to configuration data that is stored on an affected NSO system. The vulnerability exists because the Network...

5.9CVSS1.8AI score0.01487EPSS
Exploits0References1
NVD
NVD
added 2018/06/07 12:29 p.m.19 views

CVE-2018-0274

A vulnerability in the CLI parser of Cisco Network Services Orchestrator NSO could allow an authenticated, remote attacker to execute arbitrary shell commands with the privileges of the root user. The vulnerability is due to insufficient input validation. An attacker could exploit this...

9CVSS9AI score0.03958EPSS
Exploits0References2
OSV
OSV
added 2018/06/07 12:29 p.m.2 views

CVE-2018-0274

A vulnerability in the CLI parser of Cisco Network Services Orchestrator NSO could allow an authenticated, remote attacker to execute arbitrary shell commands with the privileges of the root user. The vulnerability is due to insufficient input validation. An attacker could exploit this...

8.8CVSS6.1AI score0.03958EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2018/06/07 12:0 p.m.8 views

CVE-2018-0274

A vulnerability in the CLI parser of Cisco Network Services Orchestrator NSO could allow an authenticated, remote attacker to execute arbitrary shell commands with the privileges of the root user. The vulnerability is due to insufficient input validation. An attacker could exploit this...

7.8AI score0.03958EPSS
Exploits0References2
Prion
Prion
added 2007/04/26 7:19 p.m.13 views

Default credentials

Cisco Network Services CNS NetFlow Collection Engine NFC before 6.0 has an nfcuser account with the default password nfcuser, which allows remote attackers to modify the product configuration and, when installed on Linux, obtain login access to the host operating system...

10CVSS7.4AI score0.04733EPSS
Exploits0References7Affected Software1
securityvulns
securityvulns
added 2007/04/25 12:0 a.m.23 views

Cisco Network Services NetFlow Collection Engine default account

Account with hardcoded password is used for NetFlow information gathering...

2.4AI score
Exploits0References1Affected Software1
Rows per page
Query Builder