7988 matches found
CVE-2019-1699
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
CVE-2019-1699
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
CVE-2019-1709
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
Command injection
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
CVE-2019-1709 Cisco Firepower Threat Defense Software Command Injection Vulnerability
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
CVE-2019-1709
CVE-2019-1709 affects Cisco Firepower Threat Defense Software’s CLI, where insufficient input validation allows an authenticated, local attacker to perform a command injection, potentially executing commands with root privileges. The issue concerns the CLI and specific command arguments, with exp...
CVE-2019-1709 Cisco Firepower Threat Defense Software Command Injection Vulnerability
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
CVE-2019-1699
Cisco Firepower Threat Defense (FTD) Software is affected by an authenticated, local command-injection vulnerability in its CLI due to insufficient input validation. An attacker can inject commands into arguments for a specific command, potentially executing commands with root privileges. The cor...
CVE-2019-1682 Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability
A vulnerability in the FUSE filesystem functionality for Cisco Application Policy Infrastructure Controller APIC software could allow an authenticated, local attacker to escalate privileges to root on an affected device. The vulnerability is due to insufficient input validation for certain comman...
CVE-2019-1682 Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability
A vulnerability in the FUSE filesystem functionality for Cisco Application Policy Infrastructure Controller APIC software could allow an authenticated, local attacker to escalate privileges to root on an affected device. The vulnerability is due to insufficient input validation for certain comman...
CVE-2019-1592
CVE-2019-1592 affects Cisco Nexus 9000 Series NX-OS in ACI Mode Switch Software. The issue is caused by insufficient validation of user-supplied files, allowing an authenticated, local attacker to create a crafted file in a specific filesystem directory and execute arbitrary OS commands as root. ...
Information Disclosure
admin-cli in Red Hat JBoss Enterprise Application Platform is vulnerable to information disclosure. This vulnerability exists due to EAP feature to download server log files that allows logs to be available via GET requests causing cross-origin attacks. An attacker could trigger the user's browse...
Arbitrary Code Execution
jenkins is vulnerable to arbitrary code execution. The vulnerability exists through the CLI channel...
Denial Of Service (DoS)
jenkins is vulnerable to denial of service DoS. The vulnerability exists through a CLI handshake...
Directory Traversal
jenkins is vulnerable to directory traversal. The vulnerability exists in the CLI job creation in hudson/cli/CreateJobCommand.java...
Fedora 30 : php (2019-1d78e14cfd)
PHP version 7.3.4 04 April 2019 Core: - Fixed bug php77738 Nullptr deref in zendcompileexpr. Laruence - Fixed bug php77660 Segmentation fault on break 2147483648. Laruence - Fixed bug php77652 Anonymous classes can lose their interface information. Nikita - Fixed bug php77345 Stack Overflow cause...
Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability
A vulnerability in the FUSE filesystem functionality for Cisco Application Policy Infrastructure Controller APIC software could allow an authenticated, local attacker to escalate privileges to root on an affected device. The vulnerability is due to insufficient input validation for certain comman...
Twint - An Advanced Twitter Scraping And OSINT Tool
Formerly known as Tweep, Twint is an advanced Twitter scraping tool written in Python that allows for scraping Tweets from Twitter profiles without using Twitter's API. Twint utilizes Twitter's search operators to let you scrape Tweets from specific users, scrape Tweets relating to certain topics...
Cisco Wireless LAN Controller Secure Shell Unauthorized Access Vulnerability
According to its self-reported version, Cisco Wireless LAN Controller WLC is affected by following vulnerability - A vulnerability in certain access control mechanisms for the Secure Shell SSH server implementation for Cisco Wireless LAN Controller WLC Software could allow an unauthenticated,...
CVE-2019-3786
Cloud Foundry BOSH Backup and Restore CLI, all versions prior to 1.5.0, does not check the authenticity of backup scripts in BOSH. A remote authenticated malicious user can modify the metadata file of a Bosh Backup and Restore job to request extra backup files from different jobs upon restore. Th...