[SECURITY] Fedora 37 Update: podman-4.4.1-3.fc37

podman Pod Manager is a fully featured container engine that is a simple daemonless tool. podman provides a Docker-CLI comparable command line that eases the transition from other container engines and allows the management of pods, containers and images. Simply put: alias docker=3Dpodman. Most...

PT-2023-12422 · Zowe Cli +1 · Zowe Cli +1

Name of the Vulnerable Software and Affected Versions: Imperative framework affected versions not specified Zowe CLI affected versions not specified Description: A vulnerability in the Imperative framework allows already-privileged local actors to execute arbitrary shell commands via plugin...

Cisco Email Security Appliance PrivEsc (cisco-sa-esa-sma-privesc-9DVkFpJ8)

According to its self-reported version, Cisco Email Security Appliance is affected by a vulnerability in the web UI and CLI of Cisco ESA could allow an authenticated, remote attacker web UI or authenticated, local attacker CLI to elevate privileges to root. The attacker must have valid user...

Cisco Email Security Appliance Arbitrary Code Execution (cisco-sa-esa-sma-privesc-9DVkFpJ8)

According to its self-reported version, Cisco Email Security Appliance is affected by vulnerability in the CLI of Cisco ESA could allow an authenticated, local attacker to execute arbitrary commands on an affected device. This vulnerability is due to improper input validation in the CLI. An...

K61918302: ceph-isci-cli vulnerability CVE-2018-14649

Security Advisory Description It was found that ceph-isci-cli package as shipped by Red Hat Ceph Storage 2 and 3 is using python-werkzeug in debug shell mode. This is done by setting debug=True in file /usr/bin/rbd-target-api provided by ceph-isci-cli package. This allows unauthenticated attacker...

K13074505: libarchive vulnerability CVE-2016-8687

Security Advisory Description Stack-based buffer overflow in the safefprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a filename. CVE-2016-8687 Impact For BIG-IP and VIPRION platforms that ar...

K81701735: F5OS CLI vulnerability CVE-2022-41780

Security Advisory Description A directory traversal vulnerability exists in an undisclosed location of the F5OS CLI that allows an attacker to read arbitrary files. CVE-2022-41780 Impact An authenticated attacker may exploit this vulnerability by including a crafted request to the F5OS CLI. If th...

CVE-2022-25992

Insecure inherited permissions in the IntelR oneAPI Toolkits oneapi-cli before version 0.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-25992

CVE-2022-25992 affects Intel® oneAPI Toolkits, specifically the oneapi-cli prior to version 0.2.0. The issue is insecure inherited permissions in oneapi-cli, which may allow an authenticated user to escalate privileges via local access. Intel’s advisory and multiple sources confirm the affected c...

CVE-2022-33871

A stack-based buffer overflow vulnerability CWE-121 in FortiWeb version 7.0.1 and earlier, 6.4 all versions, version 6.3.19 and earlier may allow a privileged attacker to execute arbitrary code or commands via specifically crafted CLI execute backup-local rename and execute backup-local show...

CVE-2022-38378

An improper privilege management vulnerability CWE-269 in Fortinet FortiOS version 7.2.0 and before 7.0.7 and FortiProxy version 7.2.0 through 7.2.1 and before 7.0.7 allows an attacker that has access to the admin profile section System subsection Administrator Users to modify their own profile a...

Privilege escalation

An improper privilege management vulnerability CWE-269 in Fortinet FortiOS version 7.2.0 and before 7.0.7 and FortiProxy version 7.2.0 through 7.2.1 and before 7.0.7 allows an attacker that has access to the admin profile section System subsection Administrator Users to modify their own profile a...

Command injection

A improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiADC version 7.0.0 through 7.0.1, 6.2.0 through 6.2.2, 6.1.0 through 6.1.6, 6.0.x, 5.x.x allows attacker to execute arbitrary shell code as root via CLI commands...

@accounter-toolkit/green-invoice-graphql (>=0.0.2 <=0.2.0-alpha-20230313141007-4bdbab6), @accounter-toolkit/hashavshevet-mesh (>=0.0.2 <=0.0.4-alpha-20230313141007-4bdbab6) +10 more potentially affected by CVE-2025-27098 via @graphql-mesh/cli (>=0.78.0 <=0.82.21)

@graphql-mesh/cli NPM version =0.78.0, =0.0.2, =0.0.2, =0.0.2, =0.2.0-alpha.24, =5.1.0-canary.3, =6.0.0-canary.20, =6.0.0-canary.20, =6.0.0-canary.20, =2.2.6, =0.1.147, =0.1.3, =0.1.9, =0.1.10 Source cves: CVE-2025-27098 Source advisory: OSV:GHSA-J2WH-WRV3-4X4G...

CVE-2022-38378

An improper privilege management vulnerability CWE-269 in Fortinet FortiOS version 7.2.0 and before 7.0.7 and FortiProxy version 7.2.0 through 7.2.1 and before 7.0.7 allows an attacker that has access to the admin profile section System subsection Administrator Users to modify their own profile a...

CVE-2022-33871

A stack-based buffer overflow vulnerability CWE-121 in FortiWeb version 7.0.1 and earlier, 6.4 all versions, version 6.3.19 and earlier may allow a privileged attacker to execute arbitrary code or commands via specifically crafted CLI execute backup-local rename and execute backup-local show...

CVE-2022-33871

A stack-based buffer overflow vulnerability CWE-121 in FortiWeb version 7.0.1 and earlier, 6.4 all versions, version 6.3.19 and earlier may allow a privileged attacker to execute arbitrary code or commands via specifically crafted CLI execute backup-local rename and execute backup-local show...

CVE-2022-33871

CVE-2022-33871 is a stack-based buffer overflow affecting FortiWeb prior to patch versions: 7.0.1 and earlier, 6.4 all versions, and 6.3.19 and earlier. The root cause is a vulnerable handling of CLI commands, namely execute backup-local rename and execute backup-local show, which can let a privi...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.12.3 security update

Red Hat OpenShift Container Platform release 4.12.3 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...

CVE-2023-20075

The CVE-2023-20075 issue affects Cisco Secure Email Gateway (ESA) / Cisco Email Security Appliance CLI. It stems from improper input validation in the CLI, enabling an authenticated, local attacker to inject operating system commands into a legitimate CLI command and escape the restricted prompt ...