7993 matches found
Fedora 29 : php (2019-6e325234a4)
PHP version 7.2.18 02 May 2019 CLI: - Fixed bug php77794 Incorrect Date header format in built-in server. kelunik EXIF - Fixed bug php77950 Heap-buffer-overflow in estrndup via exifprocessIFDTAG. CVE-2019-11036 Stas Interbase: - Fixed bug php72175 Impossibility of creating multiple connections to...
SUSE SLED12 / SLES12 Security Update : audit (SUSE-SU-2019:1166-1)
This update for audit fixes the following issues : Audit on SUSE Linux Enterprise 12 SP3 was updated to 2.8.1 to bring new features and bugfixes. bsc1125535 FATE326346 Many features were added to auparsenormalize cli option added to auditd and audispd for setting config dir In auditd, restore the...
Fedora Update for group-service FEDORA-2019-27e7b92407
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for spatialite-tools FEDORA-2018-ccbe8b931c
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Malicious Package
Overview All versions of wepack-cli typosquatted a popular package of similar name and tracked users who had installed the incorrect package. The package uploaded information to a remote server including: name of the downloaded package, name of the intended package, the Node version and whether t...
CVE-2019-1699
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
Command injection
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
CVE-2019-1699
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
CVE-2019-1709
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
CVE-2019-1709 Cisco Firepower Threat Defense Software Command Injection Vulnerability
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
CVE-2019-1709 Cisco Firepower Threat Defense Software Command Injection Vulnerability
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting commands into argument...
CVE-2019-1709
CVE-2019-1709 affects Cisco Firepower Threat Defense Software’s CLI, where insufficient input validation allows an authenticated, local attacker to perform a command injection, potentially executing commands with root privileges. The issue concerns the CLI and specific command arguments, with exp...
CVE-2019-1699
Cisco Firepower Threat Defense (FTD) Software is affected by an authenticated, local command-injection vulnerability in its CLI due to insufficient input validation. An attacker can inject commands into arguments for a specific command, potentially executing commands with root privileges. The cor...
CVE-2019-1682 Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability
A vulnerability in the FUSE filesystem functionality for Cisco Application Policy Infrastructure Controller APIC software could allow an authenticated, local attacker to escalate privileges to root on an affected device. The vulnerability is due to insufficient input validation for certain comman...
CVE-2019-1682 Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability
A vulnerability in the FUSE filesystem functionality for Cisco Application Policy Infrastructure Controller APIC software could allow an authenticated, local attacker to escalate privileges to root on an affected device. The vulnerability is due to insufficient input validation for certain comman...
CVE-2019-1592
CVE-2019-1592 affects Cisco Nexus 9000 Series NX-OS in ACI Mode Switch Software. The issue is caused by insufficient validation of user-supplied files, allowing an authenticated, local attacker to create a crafted file in a specific filesystem directory and execute arbitrary OS commands as root. ...
Information Disclosure
admin-cli in Red Hat JBoss Enterprise Application Platform is vulnerable to information disclosure. This vulnerability exists due to EAP feature to download server log files that allows logs to be available via GET requests causing cross-origin attacks. An attacker could trigger the user's browse...
Arbitrary Code Execution
jenkins is vulnerable to arbitrary code execution. The vulnerability exists through the CLI channel...
Denial Of Service (DoS)
jenkins is vulnerable to denial of service DoS. The vulnerability exists through a CLI handshake...
Directory Traversal
jenkins is vulnerable to directory traversal. The vulnerability exists in the CLI job creation in hudson/cli/CreateJobCommand.java...