Lucene search
K

367 matches found

Cisco
Cisco
added 2016/06/06 8:0 a.m.39 views

Cisco Aironet Access Points Command-Line Interpreter Linux Shell Command Injection Vulnerability

A vulnerability in the command-line interpreter of Cisco Aironet 1800, 2800, and 3800 Series Access Points could allow an authenticated, local attacker to inject commands in the Linux shell. The commands could be executed with root-level privileges. The vulnerability is due to improper sanitizati...

6.8CVSS7.5AI score0.00362EPSS
Exploits0References1
NVD
NVD
added 2016/06/04 2:59 p.m.21 views

CVE-2016-1403

CISCO IP 8800 phones with software 11.0.1 and earlier allow local users to gain privileges for OS command execution via crafted CLI commands, aka Bug ID CSCuz03005...

7.8CVSS7.9AI score0.0051EPSS
Exploits0References1
Cvelist
Cvelist
added 2016/06/04 2:0 p.m.26 views

CVE-2016-1403

CISCO IP 8800 phones with software 11.0.1 and earlier allow local users to gain privileges for OS command execution via crafted CLI commands, aka Bug ID CSCuz03005...

7.9AI score0.0051EPSS
Exploits0References1
NVD
NVD
added 2016/04/15 2:59 p.m.22 views

CVE-2016-1271

Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D25, 13.2 before 13.2R8, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.2 before 14.2R4, 15.1 before 15.1R1 or 15.1F2, and 15.1X49 before 15.1X49-D15 allow local users to gain privileges via...

7.8CVSS7.7AI score0.00317EPSS
Exploits0References2
Prion
Prion
added 2016/04/15 2:59 p.m.27 views

Design/Logic Flaw

Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D25, 13.2 before 13.2R8, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.2 before 14.2R4, 15.1 before 15.1R1 or 15.1F2, and 15.1X49 before 15.1X49-D15 allow local users to gain privileges via...

7.2CVSS6.9AI score0.02228EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/04/15 2:0 p.m.31 views

CVE-2016-1271

Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D25, 13.2 before 13.2R8, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.2 before 14.2R4, 15.1 before 15.1R1 or 15.1F2, and 15.1X49 before 15.1X49-D15 allow local users to gain privileges via...

7.7AI score0.00317EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.27 views

Cisco ACE 4710 Device Manager GUI Remote Command Injection Vulnerability (cisco-sa-20160224-ace)

The Cisco Application Control Engine ACE software installed on the remote Cisco ACE 4710 device is an A5 version prior to A53.0. It is, therefore, affected by a remote command injection vulnerability in the device manager GUI due to improper validation of user-supplied input in HTTP POST requests...

9CVSS8.3AI score0.02801EPSS
Exploits0References3
NVD
NVD
added 2016/02/26 5:59 a.m.17 views

CVE-2016-1297

The Device Manager GUI in Cisco Application Control Engine ACE 4710 A5 before A53.1 allows remote authenticated users to bypass intended RBAC restrictions and execute arbitrary CLI commands with admin privileges via an unspecified parameter in a POST request, aka Bug ID CSCul84801...

9CVSS8.8AI score0.02801EPSS
Exploits0References2
Prion
Prion
added 2015/10/13 12:59 a.m.18 views

Design/Logic Flaw

Cisco Aironet 1850 access points with software 8.1112.4 allow local users to gain privileges via crafted CLI commands, aka Bug ID CSCuv79694...

7.2CVSS7.1AI score0.0038EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2015/10/13 12:59 a.m.20 views

CVE-2015-6315

Cisco Aironet 1850 access points with software 8.1112.4 allow local users to gain privileges via crafted CLI commands, aka Bug ID CSCuv79694...

7.2CVSS6.6AI score0.0038EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/10/13 12:0 a.m.21 views

CVE-2015-6315

Cisco Aironet 1850 access points with software 8.1112.4 allow local users to gain privileges via crafted CLI commands, aka Bug ID CSCuv79694...

6.6AI score0.0038EPSS
Exploits0References2
CVE
CVE
added 2015/10/13 12:0 a.m.48 views

CVE-2015-6315

The CVE-2015-6315 issue affects Cisco Aironet 1850 Series Access Points running software 8.1(112.4). A local privilege-escalation vulnerability exists in the CLI, caused by insufficient escape protections when validating commands, allowing an authenticated, local attacker to gain root-level privi...

7.2CVSS6.8AI score0.0038EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/07/20 11:0 p.m.33 views

CVE-2015-4279

The Manager component in Cisco Unified Computing System UCS 2.23b on B Blade Server devices allows local users to gain privileges for executing arbitrary CLI commands by leveraging access to the subordinate fabric interconnect, aka Bug ID CSCut32778...

7AI score0.00439EPSS
Exploits0References3
Cvelist
Cvelist
added 2015/06/26 10:0 a.m.25 views

CVE-2015-4224

Cisco Wireless LAN Controller WLC devices with software 7.0240.0 allow local users to execute arbitrary OS commands in a privileged context via crafted CLI commands, aka Bug ID CSCuj39474...

7.2AI score0.00483EPSS
Exploits0References3
NVD
NVD
added 2015/04/10 3:0 p.m.20 views

CVE-2015-3003

Juniper Junos 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D30, 12.1X47 before 12.1X47-D20, 12.3 before 12.3R9, 12.3X48 before 12.3X48-D10, 13.2 before 13.2R6, 13.3 before 13.3R5, 14.1 before 14.1R3, and 14.2 before 14.2R1 allows local users to gain privileges via crafted combinations of CL...

7.2CVSS7.8AI score0.0038EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/04/10 12:0 a.m.39 views

KLA10541 Multiple vulnerabilities in Juniper Junos

Multiple serious vulnerabilities have been found in Juniper Junos. Malicious users can exploit these vulnerabilities to gainprivileges, execute arbitrary code orspoof user interface. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via unspecified vectors...

7.2CVSS8.3AI score0.01816EPSS
Exploits0References6
Symfony
Symfony
added 2014/09/03 12:0 a.m.90 views

CVE-2014-6072: CSRF vulnerability in the Web Profiler

Affected Versions All 2.0.X, 2.1.X, 2.2.X, 2.3.X, 2.4.X, and 2.5.X versions of the Symfony WebProfiler bundle are affected by this security issue. This issue has been fixed in Symfony 2.3.19, 2.4.9, and 2.5.4. Note that no fixes are provided for Symfony 2.0, 2.1, and 2.2 as they are not maintaine...

6.7AI score0.01485EPSS
Exploits0
NVD
NVD
added 2014/07/11 8:55 p.m.25 views

CVE-2014-3816

Juniper Junos 11.4 before 11.4R12, 12.1 before 12.1R11, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D20, 12.1X47 before 12.1X47-D10, 12.2 before 12.2R8-S2, 12.3 before 12.3R7, 13.1 before 13.1R4-S2, 13.2 before 13.2R5, 13.3 before 13.3R2-S2, and 14.1 before 14.1...

9CVSS7.6AI score0.02228EPSS
Exploits0References2
Prion
Prion
added 2014/01/15 4:8 p.m.19 views

Design/Logic Flaw

Juniper Junos 10.4 before 10.4R16, 11.4 before 11.4R10, 12.1R before 12.1R8-S2, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, 12.1X46 before 12.1X46-D10, 12.2 before 12.2R7, 12.3 before 12.3R5, 13.1 before 13.1R3-S1, 13.2 before 13.2R2, and 13.3 before 13.3R1 allows local users to gain...

7.2CVSS7.2AI score0.00388EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2013/12/07 5:33 a.m.17 views

CVE-2013-5455

IBM SmartCloud Provisioning 2.1 before FP3 IF0001 allows remote authenticated users to modify virtual-system deployment via deployer.virtualsystems CLI commands, as demonstrated by a deletion using a deployer.virtualsystems.delete command...

4.9CVSS6AI score0.00856EPSS
Exploits0References2
Rows per page
Query Builder