7991 matches found
Angular CLI. 代码问题漏洞
Angular CLI. is an Angular open source command line interface for Angular. A code issue vulnerability exists in Angular CLI. versions prior to 19.2.18, prior to 20.3.6, and prior to 21.0.0-next.8, which stems from a server-side request forgery issue with the URL parsing mechanism in Angular's...
CVE-2025-37140
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...
CVE-2025-58325
An Incorrect Provision of Specified Functionality vulnerability CWE-684 in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2.5 through 7.2.10, 7.0.0 through 7.0.15, 6.4 all versions may allow a local authenticated attacker to execute system commands via crafted CLI commands...
@cognigy/cognigy-cli (>=1.9.1 <=1.9.4), @iharkharytanovich/found (>=0.1.1 <=0.1.2) +2 more potentially affected by CVE-2025-11849 via mammoth (>=0.3.33 <=1.10.0)
mammoth NPM version =0.3.33, =1.9.1, =0.1.1, =1.0.0, =1.0.4 - youseeu =1.0.0 Source cves: CVE-2025-11849 Source advisory: SNYK:JS-MAMMOTH-13554470...
EUVD-2025-34432
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...
CVE-2025-37142
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...
CVE-2025-37142 Authenticated Arbitrary File Download Vulnerabilities in CLI Binary of AOS-8 Controller/Mobility Conductor Web-Based Management Interface
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...
CVE-2025-37142 Authenticated Arbitrary File Download Vulnerabilities in CLI Binary of AOS-8 Controller/Mobility Conductor Web-Based Management Interface
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...
CVE-2025-37141 Authenticated Arbitrary File Download Vulnerabilities in CLI Binary of AOS-8 Controller/Mobility Conductor Web-Based Management Interface
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...
CVE-2025-37141
CVE-2025-37141 : Arbitrary file download vulnerability in the CLI binary of ArubaOS AOS-10 GW and AOS-8 Controller/Mobility Conductor. An authenticated attacker could download arbitrary files through carefully crafted exploits. The connected documents corroborate the affected products (AOS-10 GW ...
CVE-2025-37140 Authenticated Arbitrary File Download Vulnerabilities in CLI Binary of AOS-8 Controller/Mobility Conductor Web-Based Management Interface
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...
EUVD-2025-34435
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...
CVE-2025-37136
CVE-2025-37136 is an authenticated arbitrary file deletion vulnerability in the CLI of HPE ArubaOS 8 Controller/Mobility Conductor. The issue allows an authenticated remote attacker to delete arbitrary files within the affected system. Connected documents corroborate the issue in ArubaOS: multipl...
CVE-2023-46718
A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.12 and 6.4.6 through 6.4.15 and 6.2.9 through 6.2.16 and 6.0.13 through 6.0.18 allows attacker to execute unauthorized code or commands via specially crafted CLI commands...
CVE-2025-58325
An Incorrect Provision of Specified Functionality vulnerability CWE-684 in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2.5 through 7.2.10, 7.0.0 through 7.0.15, 6.4 all versions may allow a local authenticated attacker to execute system commands via crafted CLI commands...
CVE-2025-47856
Fortinet FortiVoice is affected by an OS command injection vulnerability (CWE-78) caused by improper neutralization of specific elements. Impacted versions include FortiVoice 7.0.0 through 7.0.6 and 7.2.0 with pre-6.4.10. An authenticated or privileged attacker could potentially execute arbitrary...
HPE AOS 安全漏洞
HPE AOS is an operating system from HPE, USA. A security vulnerability exists in HPE AOS that stems from an arbitrary file download vulnerability in the CLI binary, which could lead to an authenticated attacker downloading arbitrary files...
PT-2025-41940
A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.12 and 6.4.6 through 6.4.15 and 6.2.9 through 6.2.16 and 6.0.13 through 6.0.18 allows attacker to execute unauthorized code or commands via specially crafted CLI commands...
PT-2025-41978
Name of the Vulnerable Software and Affected Versions AOS-8 Controller/Mobility Conductor affected versions not specified Description An authenticated command injection flaw exists in the CLI binary of the AOS-8 Controller/Mobility Conductor operating system. Successful exploitation could allow a...
PT-2025-41977
Name of the Vulnerable Software and Affected Versions AOS-8 Controller/Mobility Conductor affected versions not specified Description An authenticated command injection flaw exists in the Command Line Interface CLI binary. Exploitation allows an attacker with valid credentials to execute arbitrar...