CVE-2014-0747

The Certificate Authority Proxy Function CAPF CLI implementation in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows local users to inject commands via unspecified CAPF programs, aka Bug ID CSCum95493...

Cisco Unified Communications Manager CAPF CLI Command Injection Vulnerability

A vulnerability in the Certificate Authority Proxy Function CAPF command-line interface CLI of Cisco Unified Communications Manager Cisco Unified CM could allow an authenticated, local attacker to inject commands into the underlying operating system. The vulnerability is due to insufficient input...

CVE-2014-0730

Cisco Unified Computing System UCS Central Software 1.1 and earlier allows local users to gain privileges via a CLI copy command in a local-mgmt context, aka Bug ID CSCul53128...

Hardcoded credentials

Cisco UCS Director formerly Cloupia before 4.0.0.3 has a hardcoded password for the root account, which makes it easier for remote attackers to obtain administrative access via an SSH session to the CLI interface, aka Bug ID CSCui73930...

CVE-2014-0709

Cisco UCS Director formerly Cloupia before 4.0.0.3 has a hardcoded password for the root account, which makes it easier for remote attackers to obtain administrative access via an SSH session to the CLI interface, aka Bug ID CSCui73930...

McAfee VirusScan Enterprise < 8.8 / 8.7 HF643440 CLI Local Privilege Escalation (SB10014)

The remote Windows host has a version of McAfee VirusScan Enterprise VSE prior to 8.8 or 8.7 Hot-Fix 643440. It is, therefore, reportedly affected by a CLI local privilege escalation vulnerability that could disable VSE and its connection to McAfee ePolicy Orchestrator ePO. C Tenable Network...

Juniper Networks Junos OS Multiple Privilege Escalation Vulnerabilities in Junos CLI

Privilege escalation vulnerability through certain CLI commands. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos"; ...

Juniper Junos CLI libc recomp() rpd DoS (JSA10612)

According to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability in the regcomp implementation of the GNU C Library used in the command-line interpreter CLI. A attacker can exploit this vulnerability to crash the RE by using a crafted...

Design/Logic Flaw

Juniper Junos 10.4 before 10.4R16, 11.4 before 11.4R10, 12.1R before 12.1R8-S2, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, 12.1X46 before 12.1X46-D10, 12.2 before 12.2R7, 12.3 before 12.3R5, 13.1 before 13.1R3-S1, 13.2 before 13.2R2, and 13.3 before 13.3R1 allows local users to gain...

Fedora 20 : php-5.5.7-1.fc20 (2013-23164)

12 Dec 2013, PHP 5.5.7 CLI server : - Added some MIME types to the CLI web server Chris Jones - Implemented FR 65917 getallheaders is not supported by the built-in web server - also implements apacheresponseheaders Andrea Faulds Core : - Fixed bug 66094 unregistertickfunction tries to cast a...

Critical: php

Issue Overview: The asn1timetotimet function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse 1 notBefore and 2 notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of...

Fedora 19 : php-5.5.7-1.fc19 (2013-23208)

12 Dec 2013, PHP 5.5.7 CLI server : - Added some MIME types to the CLI web server Chris Jones - Implemented FR 65917 getallheaders is not supported by the built-in web server - also implements apacheresponseheaders Andrea Faulds Core : - Fixed bug 66094 unregistertickfunction tries to cast a...

CVE-2013-5455

IBM SmartCloud Provisioning 2.1 before FP3 IF0001 allows remote authenticated users to modify virtual-system deployment via deployer.virtualsystems CLI commands, as demonstrated by a deletion using a deployer.virtualsystems.delete command...

CVE-2013-5455

Summary: IBM SmartCloud Provisioning 2.1 before FP3 IF0001 is vulnerable to an unaffordable remote-authenticated command that can delete or modify virtual-system deployments via the deployer.virtualsystems CLI (example: delete). The issue affects the CLI (not GUI) and can be triggered by commands...

CVE-2013-5455

IBM SmartCloud Provisioning 2.1 before FP3 IF0001 allows remote authenticated users to modify virtual-system deployment via deployer.virtualsystems CLI commands, as demonstrated by a deletion using a deployer.virtualsystems.delete command...

Fedora Update for fedmsg FEDORA-2013-17925

Check for the Version of fedmsg OpenVAS Vulnerability Test Fedora Update for fedmsg FEDORA-2013-17925 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

Fedora Update for fedmsg FEDORA-2013-17904

Check for the Version of fedmsg OpenVAS Vulnerability Test Fedora Update for fedmsg FEDORA-2013-17904 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

[SECURITY] Fedora 18 Update: fedmsg-0.7.1-2.fc18

Python API used around Fedora Infrastructure to send and receive messages w ith zeromq. Includes some CLI tools...

[SECURITY] Fedora 19 Update: fedmsg-0.7.1-2.fc19

Python API used around Fedora Infrastructure to send and receive messages w ith zeromq. Includes some CLI tools...

Cisco Unified Computing System Fabric Interconnect Arbitrary File Read Vulnerability

A vulnerability in the fabric interconnect of the Cisco Unified Computing System could allow an authenticated, local attacker to view arbitrary files on the underlying filesystem. The vulnerability is due to improper filtering of user-supplied parameters. An attacker could exploit this...