CVE-2024-20343

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to read any file in the file system of the underlying Linux operating system. The attacker must have valid credentials on the affected device. This vulnerability is due to incorrect validation of the...

CVE-2018-1002100

An improper validation flaw exists in the kubernetes 'kubectl cp' command. An attacker, who could trick a user into using the command to copy files locally from a pod, could override files outside of the target directory of the command...

Design/Logic Flaw

Juniper Junos OS before 12.1X46-D50 on SRX Series devices reverts to "safe mode" authentication and allows root CLI logins without a password after a failed upgrade to 12.1X46, which might allow local users to gain privileges by leveraging use of the "request system software" command with the...

ignitionServer SERVER Command Spoofed Server Saturation DoS

The remote host is running a version of the IgnitionServer IRC service that could be vulnerable to a denial of service in the SERVER command. An attacker could crash the remote host by misusing the SERVER command repeatdly. C Tenable Network Security, Inc. include"compat.inc"; ifdescription...

dosemu.sh

[email protected] - Corel Linux dosemu config error. Local root compromise. Software: Corel Linux 1.0 dosemu distribution configuration URL: http://linux.corel.com Version: Version 1.0 The system.com command is available to any user who runs the dos emulator. This is a direct violation of the advice...