FortiWLC - Multiple Buffer Overflow vulnerabilities

Multiple instances of stack-based buffer overflow vulnerability CWE-121 in the command line interface of FortiWLC may allow a local, authenticated attacker to crash the access point being managed by the controller and potentially execute unauthorized code via a specifically crafted CLI command...

The vulnerability of the command-line interface (CLI) of microprogramming software for Cisco Adaptive Security Appliance Software (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the command-line interface CLI of Cisco Adaptive Security Appliance Software ASA and Cisco Firepower Threat Defense FTD lies in the lack of measures to neutralize the special elements used in operating system commands. Exploiting this vulnerability can allow attackers to...

CVE-2021-1438

A vulnerability in Cisco Wide Area Application Services WAAS Software could allow an authenticated, local attacker to gain access to sensitive information on an affected device. The vulnerability is due to improper input validation and authorization of specific commands that a user can execute...

Cisco SD-WAN vManage 操作系统命令注入漏洞

Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. Cisco SD-WAN vManage has an operating system command injection vulnerability that can be exploited by a local attacker to inject arbitrary...

PT-2021-3256 · Cisco · Cisco Sd-Wan

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN Software affected versions not specified Description: A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying file system of an affected...

The vulnerability of the command-line interface (CLI) of the JunOS operating system for routers of the EX2300 and EX3400 series, which allows a attacker to cause service interruptions.

The vulnerability of the command-line interface CLI of the JunOS operating system for EX2300 and EX3400 routers is related to insufficient handling of exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

CVE-2021-21730

A ZTE product is impacted by improper access control vulnerability. The attacker could exploit this vulnerability to access CLI by brute force attacks.This affects: ZXHN H168N V3.5.0TY.T6...

[SECURITY] Fedora 33 Update: mediaconch-18.03.2-17.fc33

MediaConch is an implementation checker, policy checker, reporter, and fixer that targets preservation-level audiovisual files specifically Matroska, Linear Pulse Code Modulation LPCM and FF Video Codec 1 FFV1. This project is maintained by MediaArea and funded by PREFORMA. This package includes...

The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface allows attackers to compromise the integrity of protected information.

The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface relates to the use of files and directories accessible from external parties. Exploiting this vulnerability could allow a attacker to compromise the integrity of the protected information...

The vulnerability of the Cisco IOS XE SD-WAN’s command-line interface allows a hacker to elevate their privileges to the root level.

The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface is related to resource management errors. Exploiting this vulnerability allows an attacker to execute arbitrary commands on the underlying operating system...

The vulnerability of the command-line interface of Cisco Aironet Access Point microprogramming software allows a attacker to access, modify, add, or delete data.

The vulnerability of the command-line interface of Cisco Aironet Access Point software relates to deficiencies in the system’s controlled area segmentation. Exploiting this vulnerability could allow an attacker to access, modify, add, or delete data...

The vulnerability of the CLI component in Cisco IOS XE routers for Cisco IOS XE SD-WAN allows a attacker to gain access to the basic operating system with superuser privileges.

The vulnerability of Cisco IOS XE operating system routers in Cisco IOS XE SD-WAN devices exists due to insufficient validation of input data. Exploiting this vulnerability can allow attackers to gain access to the basic operating system with superuser privileges...

Fedora: Security Advisory for mediaconch (FEDORA-2021-3b67623d93)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

The vulnerability of the command-line interface (CLI) of Cisco IOS XE and Cisco IOS operating systems allows a attacker to obtain the password for the Common Industrial Protocol (CIP) and reconfigure the device.

The vulnerability of the command-line interface CLI of Cisco IOS XE and Cisco IOS operating systems is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to obtain the password for the Common Industrial Protocol CIP and reconfigure the...

Aruba Instant Arbitrary File Modification Vulnerability

Aruba Instant is a cloud-hosted controller-less wireless access point. Aruba Instant suffers from an arbitrary file modification vulnerability that can be exploited by an attacker via a command line interface to overwrite arbitrary files with content under their control...

Aruba Instant Command Injection Vulnerability (CNVD-2021-26046)

Aruba Instant is a cloud-hosted controller-less wireless access point. A command injection vulnerability exists in the command line interface of Aruba Instant, which can be exploited by an attacker to execute arbitrary commands in the underlying operating system...

Aruba Access Points 操作系统命令注入漏洞

Aruba Instant is a cloud-hosted controller-less wireless access point. A command injection vulnerability exists in the command line interface of Aruba Instant, which can be exploited by an attacker to execute arbitrary commands in the underlying operating system...

Aruba Access Points 输入验证错误漏洞

Aruba Instant is a cloud-hosted controller-less wireless access point. Aruba Instant suffers from an arbitrary file modification vulnerability that can be exploited by an attacker via a command line interface to overwrite arbitrary files with content under their control...

Aruba Access Points 命令注入漏洞

Aruba Instant is a cloud-hosted controller-less wireless access point. A command injection vulnerability exists in the command line interface of Aruba Instant, which can be exploited by an attacker to execute arbitrary commands in the underlying operating system...

CVE-2021-1281

A vulnerability in CLI management in Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the underlying operating system as the root user. This vulnerability is due to the way the software handles concurrent CLI sessions. An attacker could exploit this vulnerabilit...