CVE-2025-21596 Junos OS: SRX1500,SRX4100,SRX4200: Execution of low-privileged CLI command results in chassisd crash

An Improper Handling of Exceptional Conditions vulnerability in the command-line processing of Juniper Networks Junos OS on SRX1500, SRX4100, and SRX4200 devices allows a local, low-privileged authenticated attacker executing the 'show chassis environment pem' command to cause the chassis daemon...

Cisco NX-OS Improper Input Validation (CVE-2017-12338)

A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to read the contents of arbitrary files. The vulnerability is due to insufficient input validation for a specific CLI command. An attacker could exploit this vulnerability by issuing a crafted...

Fortinet FortiWeb Multiple stack-based buffer overflow vulnerabilities in CLI command (FG-IR-20-206)

The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-20-206 advisory. - A stack-based buffer overflow in Fortinet FortiWeb version 6.3.14 and below, 6.2.4 and below allows attacker to execute...

CVE-2024-9677

The insufficiently protected credentials vulnerability in the CLI command of the USG FLEX H series uOS firmware version V1.21 and earlier versions could allow an authenticated local attacker to gain privilege escalation by stealing the authentication token of a login administrator. Note that this...

CVE-2024-9677

Affected: Zyxel USG FLEX H series devices running uOS firmware v1.21 and earlier. Vulnerable component: CLI commands where credentials are insufficiently protected, enabling an authenticated local attacker to escalate privileges by stealing a login administrator’s authentication token if the admi...

CVE-2024-9677

The insufficiently protected credentials vulnerability in the CLI command of the USG FLEX H series uOS firmware version V1.21 and earlier versions could allow an authenticated local attacker to gain privilege escalation by stealing the authentication token of a login administrator. Note that this...

CVE-2024-47493

A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine PFE of the Juniper Networks Junos OS on the MX Series platforms with Trio-based FPCs allows an unauthenticated, adjacent attacker to cause a Denial of Service DoS. In case of channelized Modular...

CVE-2024-47493

CVE-2024-47493 affects Junos OS on MX Series with Trio-based FPCs. The vulnerability is a Missing Release of Memory after Effective Lifetime in the PFE, causing a heap memory leak during channelized MIC interface flap activity and potentially leading to DoS for unauthenticated adjacent attackers....

Malicious code in cli-command-with-alias (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6b03e8947704f3b685460bd5c1a963c852f7877815be28a52d9642875d1348d0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-20343

Cisco IOS XR Software CLI Arbitrary File Read vulnerability (CVE-2024-20343) allows an authenticated, local attacker to read files from the underlying Linux filesystem due to improper validation of CLI command arguments. Exploitation requires valid credentials on the affected device and uses a lo...

CVE-2024-20343 Cisco IOS XR Software CLI Arbitrary File Read Vulnerability

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to read any file in the file system of the underlying Linux operating system. The attacker must have valid credentials on the affected device. This vulnerability is due to incorrect validation of the...

CVE-2024-20469

Cisco CVE-2024-20469 is a local-authenticated command-injection vulnerability in specific Cisco Identity Services Engine (ISE) CLI commands. It allows an authenticated administrator to submit crafted CLI input to execute arbitrary OS commands with root privileges (privilege escalation). The vulne...

D-Link DAP-2622 Command Injection Remote Code Execution Vulnerability

The D-Link DAP-2622 is a wireless access point AP from D-Link designed for wireless network coverage in an enterprise or commercial environment. The D-Link DAP-2622 suffers from a Command Injection Remote Code Execution vulnerability that stems from a Telnet CLI Command Injection Remote Code...

PT-2024-29995 · Aruba · Aruba Access Point

Name of the Vulnerable Software and Affected Versions: Aruba Access Points affected versions not specified Description: Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI...

Exploit for Path Traversal in Jenkins

CVE-2024-23897 Because of a misconfiguration of a default o...

ops leaking secrets if `subprocess.CalledProcessError` happens with a `secret-*` CLI command

Summary The issue here is that we pass the secret content as one of the args via CLI. This issue may affect any of our charms that are using: Juju =3.0, Juju secrets and not correctly capturing and processing subprocess.CalledProcessError. There are two points that may log this command, in...

GHSA-HCMV-JMQH-FJGM ops leaking secrets if `subprocess.CalledProcessError` happens with a `secret-*` CLI command

Summary The issue here is that we pass the secret content as one of the args via CLI. This issue may affect any of our charms that are using: Juju =3.0, Juju secrets and not correctly capturing and processing subprocess.CalledProcessError. There are two points that may log this command, in...

CVE-2024-41129 The ops library leaks secrets if `subprocess.CalledProcessError` happens with a `secret-*` CLI command

The ops library is a Python framework for developing and testing Kubernetes and machine charms. The issue here is that ops passes the secret content as one of the args via CLI. This issue may affect any of the charms that are using: Juju =3.0, Juju secrets and not correctly capturing and processi...

CVE-2024-39536

A Missing Release of Memory after Effective Lifetime vulnerability in the Periodic Packet Management Daemon ppmd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial-of-Service DoS. When a BFD session configured with authentication...

CVE-2024-39548

CVE-2024-39548 describes an Uncontrolled Resource Consumption vulnerability in the aftmand process of Juniper Networks Junos OS Evolved. An unauthenticated, network-based attacker can cause memory consumption leading to a Denial of Service; affected systems do not recover automatically and requir...