7894 matches found
CVE-2026-20110
The CVE-2026-20110 affects Cisco IOS XE CLI. The issue stems from incorrect privileges tied to the start maintenance command, enabling a local, authenticated lower-privilege user to put the device into maintenance mode. This action shuts down interfaces and causes a DoS condition. Recovery is pos...
CVE-2026-20110
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to cause a denial of service DoS condition on an affected device. This vulnerability exists because incorrect privileges are associated with the start maintenance command. An attacker could exploit th...
Malicious code in env-node-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b1b6f1e45cba2962a0ff258e15bc55427bc91725fb41409442324f1a19cf520 The package env-node-cli was found to contain malicious code...
MAL-2026-2364 Malicious code in env-node-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b1b6f1e45cba2962a0ff258e15bc55427bc91725fb41409442324f1a19cf520 The package env-node-cli was found to contain malicious code...
Malicious code in env-express-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c836e2eb4b78603e8fa096a1eb11b7b3b9e49a91bcfe0b82be74b1bdd1c58a03 The package env-express-cli was found to contain malicious code...
MAL-2026-2362 Malicious code in env-express-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c836e2eb4b78603e8fa096a1eb11b7b3b9e49a91bcfe0b82be74b1bdd1c58a03 The package env-express-cli was found to contain malicious code...
MAL-2026-2358 Malicious code in env-cli-express (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46e9b2427571d9edd96dfaefcc677578a0296dcf49d197e9482a67b794ea440e The package env-cli-express was found to contain malicious code...
Malicious code in env-cli-express (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46e9b2427571d9edd96dfaefcc677578a0296dcf49d197e9482a67b794ea440e The package env-cli-express was found to contain malicious code...
EUVD-2025-208939
Improper input handling in a wireless-control administrative CLI command on TP-Link Archer NX200, NX210, NX500 and NX600 allows crafted input to be executed as part of an operating system command. An authenticated attacker with administrative privileges may execute arbitrary commands on the...
CVE-2025-15519
Improper input handling in a modem-management administrative CLI command on TP-Link Archer NX200, NX210, NX500 and NX600 allows crafted input to be executed as part of an operating system command. An authenticated attacker with administrative privileges may execute arbitrary commands on the...
CVE-2025-15519
The CVE-2025-15519 affects TP-Link Archer NX200/NX210/NX500/NX600 devices, where an improper input handling in the modem-management CLI allows authenticated administrators to inject commands that are executed by the OS. This can impact confidentiality, integrity, and availability as described. No...
CVE-2025-15519
Improper input handling in a modem-management administrative CLI command on TP-Link Archer NX200, NX210, NX500 and NX600 allows crafted input to be executed as part of an operating system command. An authenticated attacker with administrative privileges may execute arbitrary commands on the...
CVE-2025-15518 Command Injection in Wireless Control CLI on TP-Link Archer NX200, NX210, NX500 and NX600
Improper input handling in a wireless-control administrative CLI command on TP-Link Archer NX200, NX210, NX500 and NX600 allows crafted input to be executed as part of an operating system command. An authenticated attacker with administrative privileges may execute arbitrary commands on the...
CVE-2026-3587 Hidden CLI Function Allows Root Access
An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device...
TP-Link多款产品 安全漏洞
TP-LINK Archer is a series of routers produced by TP-LINK Corporation. Several TP-Link products have security vulnerabilities. These vulnerabilities stem from improper handling of wireless control management CLI commands. This could allow authenticated attackers with administrative privileges to...
Siemens APE1808 Incorrect Provision of Specified Functionality (CVE-2025-58325)
An Incorrect Provision of Specified Functionality vulnerability CWE-684 in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2.5 through 7.2.10, 7.0.0 through 7.0.15, 6.4 all versions may allow a local authenticated attacker to execute system commands via crafted CLI commands. This plugin only works with...
PT-2026-27066
Name of the Vulnerable Software and Affected Versions WAGO Lean Managed Switch 852-1812 and other WAGO products versions prior to a fix for CVE-2026-3587 Description An unauthenticated remote attacker can exploit a hidden function within the Command Line Interface CLI prompt to bypass the...
TP-Link多款产品 安全漏洞
TP-LINK Archer is a series of routers produced by TP-LINK Corporation. Several TP-Link products have security vulnerabilities. These vulnerabilities stem from improper handling of Modem Management CLI command inputs. This could allow authenticated attackers with administrative privileges to execu...
Siemens APE1808 Improper Neutralization of Special Elements used in an OS Command (CVE-2025-4230)
A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI. This plugin only works with...
@abysslabs/cli (=0.0.2), @analogjs/vite-plugin-nitro (>=2.4.0-alpha.2 <=3.0.0-alpha.1) +26 more potentially affected by CVE-2026-33490 via h3 (>=2.0.1-rc.11 <=2.0.1-rc.16)
h3 NPM version =2.0.1-rc.11, =2.4.0-alpha.2, =3.23.1-20260131-121433-34f631e, =0.15.0, =1.154.7, =0.0.1, =1.154.7, =1.154.7, =1.154.7, =2.0.0-beta.17 and more Source cves: CVE-2026-33490 Source advisory: SNYK:JS-H3-15745916...