1775 matches found
CVE-2019-14337
CVE-2019-14337 affects D-Link 6600-AP and DWL-3600AP devices running firmware 4.2.0.14 (Ax). The issue enables escaping the restricted command-line interface to a shell, demonstrated by the /bin/sh -c wget sequence. Documented references include NVD (CVSS2/3.1), Red Hat and CNVD entries, and thir...
CVE-2019-14337
An issue was discovered on D-Link 6600-AP and DWL-3600AP Ax 4.2.0.14 21/03/2019 devices. There is an ability to escape to a shell in the restricted command line interface, as demonstrated by the /bin/sh -c wget sequence...
D-Link 6600-AP XSS / DoS / Information Disclosure
Security Advisory - 22/07/2019 Multiple vulnerabilities found in the D-Link 6600-AP device running the latest firmware version 4.2.0.14. D-Link 6600-AP is not produced anymore but the support is still provided by D-Link as per described on the D-Link website. Not that this product is built for...
The vulnerability of the command-line interface of the Cisco Unified Communications Domain Manager allows a attacker to execute arbitrary commands.
The vulnerability of the command-line interface of the Cisco Unified Communications Domain Manager is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary commands...
CVE-2018-20850
Stormshield Network Security 2.0.0 through 2.13.0 and 3.0.0 through 3.7.1 has self-XSS in the command line interface of the SNS web server...
CVE-2018-20850
Stormshield Network Security 2.0.0 through 2.13.0 and 3.0.0 through 3.7.1 has self-XSS in the command line interface of the SNS web server...
CVE-2018-20850
Stormshield Network Security versions 2.0.0–2.13.0 and 3.0.0–3.7.1 contain a self‑XSS vulnerability in the SNS web server's command‑line interface. The issue stems from a lack of proper validation in the web application, enabling local attackers to trigger client‑side script execution. No remedia...
The vulnerability of the command-line interface of the Cisco Integrated Management Controller, a remote administration tool, allows a malicious actor to execute arbitrary commands with root privileges.
The vulnerability of the command-line interface of the Cisco Integrated Management Controller remote management software exists because measures to neutralize the special elements used in the operating system’s command are not taken. Exploiting this vulnerability allows an attacker to execute...
The vulnerability of the command-line interface of the Cisco NX-OS network operating system allows a attacker to execute arbitrary code with root privileges.
The vulnerability of the command-line interface CLI of the Cisco NX-OS network operating system is related to insufficient validation of input data. Exploiting this vulnerability could allow a attacker to execute arbitrary code with root privileges on the Linux base operating system...
The vulnerability of the command-line interface of the Cisco NX-OS network operating system allows a attacker to execute arbitrary code with root privileges.
The vulnerability of the command-line interface CLI of the Cisco NX-OS network operating system is related to insufficient validation of input data. Exploiting this vulnerability could allow a attacker to execute arbitrary code with root privileges on the Linux base operating system...
The vulnerability of the command-line interface of the Cisco NX-OS network operating system allows a attacker to execute arbitrary code with root privileges.
The vulnerability of the command-line interface CLI of the Cisco NX-OS network operating system is related to insufficient validation of input data. Exploiting this vulnerability could allow a attacker to execute arbitrary code with root privileges on the Linux base operating system...
The vulnerability of the command-line interface of the Cisco Meeting Server platform, related to insufficient validation of input data, allows a malicious actor to execute arbitrary commands with root privileges.
The vulnerability of the command-line interface of the Cisco Meeting Server platform relates to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root privileges...
The vulnerability of the command-line interface of the Cisco NX-OS network operating system allows a attacker to execute arbitrary code with elevated privileges.
The vulnerability of the Cisco NX-OS network operating system’s command-line interface CLI is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges on the base operating system...
The vulnerability of the command-line interface of Cisco NX-OS and FX-OS allows a attacker to execute arbitrary code with elevated privileges.
The vulnerability of the command-line interface in Cisco NX-OS and FX-OS network operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges within the base operating system...
The vulnerability of the command-line interface of Cisco NX-OS and FX-OS allows a attacker to execute arbitrary code with elevated privileges.
The vulnerability of the command-line interface in Cisco NX-OS and FX-OS network operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges on the underlying operating system...
Cisco Integrated Management Controller Operating System Command Injection Vulnerability
Cisco Integrated Management Controller IMC is a set of software from the American company Cisco Cisco for the management of UCS Unified Computing System. The software supports HTTP, SSH access, etc., and can perform operations such as powering on, powering off and rebooting the server. An operati...
The vulnerability of the command-line interface of the Cisco NX-OS network operating system allows a attacker to execute arbitrary code with root privileges.
The vulnerability of the command-line interface CLI of the Cisco NX-OS network operating system is related to insufficient validation of input data. Exploiting this vulnerability could allow a attacker to execute arbitrary code with root privileges on the Linux base operating system...
CVE-2019-1625
A vulnerability in the CLI of Cisco SD-WAN Solution could allow an authenticated, local attacker to elevate lower-level privileges to the root user on an affected device. The vulnerability is due to insufficient authorization enforcement. An attacker could exploit this vulnerability by...
Cisco SD-WAN Solution Privilege Permission and Access Control Issues Vulnerability (CNVD-2019-25711)
Cisco SD-WAN Solution is a suite of network extension solutions from Cisco. the CLI is a command line interface. A privilege-granting and access control issue vulnerability exists in the CLI in Cisco SD-WAN Solution versions 18.3.6, 18.4.1, and 19.1.0, which can be exploited by a local attacker t...
The vulnerability of the command-line interface of networking operating systems NX-OS and FX-OS allows attackers to escalate their privileges and execute arbitrary commands.
The vulnerability of the command-line interface of networking operating systems NX-OS and FX-OS is related to insufficient checking of arguments passed to certain CLI commands. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary commands...