CVE-2015-5319

XML external entity XXE vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job...

CVE-2015-8103

The Jenkins CLI subsystem in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to execute arbitrary code via a crafted serialized Java object, related to a problematic webapps/ROOT/WEB-INF/lib/commons-collections-.jar file and the "Groovy variant in 'ysoserial'"...

CVE-2015-5319

XML external entity XXE vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job...

Information disclosure

The sidepanel widgets in the CLI command overview and help pages in Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to the pages...

CVE-2015-5321

The sidepanel widgets in the CLI command overview and help pages in Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to the pages...

CVE-2015-8103

The Jenkins CLI subsystem in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to execute arbitrary code via a crafted serialized Java object, related to a problematic webapps/ROOT/WEB-INF/lib/commons-collections-.jar file and the "Groovy variant in 'ysoserial'"...

CVE-2015-5321

CVE-2015-5321 affects Jenkins, enabling information disclosure via the sidepanel widgets in the CLI command overview and help pages. The root cause is an information leakage vulnerability exposed by direct requests to those pages, allowing remote attackers to obtain sensitive data. Affected versi...

Multiple Huawei eSpace switch denial of service vulnerabilities

Huawei eSpace U1910, eSpace U1911, eSpace U1930, eSpace U1960, eSpace U1980, and eSpace U1981 are eSpace U1900 series switch products from Huawei, China. A security vulnerability exists in the exception handling mechanism in the CLI Module of several Huawei eSpace switches, which allows remote...

CVE-2015-7845

The exception handling mechanism in the CLI Module in Huawei eSpace U1910, U1911, U1930, U1960, U1980, and U1981 unified gateways with software before V100R001C20SPH605 allows remote attackers to cause a denial of service CLI outage via crafted SSH packets...

CVE-2015-6370

The CVE-2015-6370 entry describes a local command-injection vulnerability in the Management I/O (MIO) CLI of Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices. The root cause is insufficient sanitization of user-supplied input in the CLI, allowing an authenticated l...

Cisco Firepower 9000 Command Injection at Management I/O Command-Line Interface Vulnerability

A vulnerability in the Management I/O MIO command-line interface CLI command execution of Cisco Firepower 9000 devices could allow an authenticated, local attacker to access the underlying operating system and execute commands at the root privilege level. The vulnerability is due to insufficient...

[SECURITY] Fedora 22 Update: telegram-cli-1.3.1-7.20150730git2052f4.fc22

Telegram is an Open Source instant messaging platform for mobile and desktop focused on privacy. This is a Linux Command-line interface for Telegram...

[SECURITY] Fedora 23 Update: telegram-cli-1.3.1-7.20150730git2052f4.fc23

Telegram is an Open Source instant messaging platform for mobile and desktop focused on privacy. This is a Linux Command-line interface for Telegram...

Fedora Update for telegram-cli FEDORA-2015-69133

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

Cisco Aironet 1850 access points with software 8.1112.4 allow local users to gain privileges via crafted CLI commands, aka Bug ID CSCuv79694...

CVE-2015-6315

Cisco Aironet 1850 access points with software 8.1112.4 allow local users to gain privileges via crafted CLI commands, aka Bug ID CSCuv79694...

CVE-2015-6315

Cisco Aironet 1850 access points with software 8.1112.4 allow local users to gain privileges via crafted CLI commands, aka Bug ID CSCuv79694...

CVE-2015-6315

The CVE-2015-6315 issue affects Cisco Aironet 1850 Series Access Points running software 8.1(112.4). A local privilege-escalation vulnerability exists in the CLI, caused by insufficient escape protections when validating commands, allowing an authenticated, local attacker to gain root-level privi...

Fedora 21 : 389-ds-base-1.3.3.13-1.fc21 (2015-15128)

389-ds-base-1.3.3.13-1.fc21 - release 1.3.3.13 - Ticket 48265 - Complex filter in a search request doen't work as expected. regression - Ticket 47981 - COS cache doesn't properly mark vattr cache as invalid when there are multiple suffixes - Ticket 48252 - db2index creates index entry from delete...

Telegram Denial Of Service / Bypass Limit Vulnerabilities

Exploit for multiple platform in category dos / poc + Title: Telegram - Multiple Vulnerabilities + Product: Telegram + Vendor: http://telegram.org/ + SoftWare Link : https://web.telegram.org / https://my.telegram.org Author : Eduardo Alves E-Mail : edudx1 at gmail dot com Website :...