The vulnerability of the CLI component of the FortiMail email security system allows a hacker to execute arbitrary codes or commands.

The vulnerability of the CLI component of the FortiMail email security system is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code or commands...

AWS SAM CLI Path Traversal allows file copy to build container

Summary The AWS Serverless Application Model Command Line Interface AWS SAM CLI is an open-source CLI tool that helps Lambda developers to build and develop Lambda applications locally on their computers using Docker. When running the AWS SAM CLI build process with Docker and symlinks are include...

CVE-2025-3047

CVE-2025-3047 affects the AWS SAM CLI when building with Docker in the local workspace. The issue arises from symlinks in build files, enabling a user to access privileged host files through the container’s elevated permissions. Impact is limited to local workspaces using container builds and doe...

CVE-2025-2858

Privilege escalation vulnerability in the saTECH BCU firmware version 2.1.3. An attacker with access to the CLI of the device could make use of the nice command to bypass all restrictions and elevate privileges as a superuser...

CVE-2025-2858

Privilege escalation vulnerability in the saTECH BCU firmware version 2.1.3. An attacker with access to the CLI of the device could make use of the nice command to bypass all restrictions and elevate privileges as a superuser...

CVE-2025-2598

When the AWS Cloud Development Kit AWS CDK Command Line Interface AWS CDK CLI is used with a credential plugin which returns an expiration property with the retrieved AWS credentials, the credentials are printed to the console output. To mitigate this issue, users should upgrade to version 2.178....

CVE-2025-27080

Vulnerabilities in the command line interface of AOS-CX could allow an authenticated remote attacker to expose sensitive information. Successful exploitation could allow an attacker to gain unauthorized access to services outside of the impacted switch, potentially leading to lateral movement...

CVE-2025-27080

Vulnerabilities in the command line interface of AOS-CX could allow an authenticated remote attacker to expose sensitive information. Successful exploitation could allow an attacker to gain unauthorized access to services outside of the impacted switch, potentially leading to lateral movement...

CVE-2025-27080 Authenticated Sensitive Information Disclosure exposes Credentials in AOS-CX Command Line Interface

Vulnerabilities in the command line interface of AOS-CX could allow an authenticated remote attacker to expose sensitive information. Successful exploitation could allow an attacker to gain unauthorized access to services outside of the impacted switch, potentially leading to lateral movement...

CVE-2025-27080 Authenticated Sensitive Information Disclosure exposes Credentials in AOS-CX Command Line Interface

Vulnerabilities in the command line interface of AOS-CX could allow an authenticated remote attacker to expose sensitive information. Successful exploitation could allow an attacker to gain unauthorized access to services outside of the impacted switch, potentially leading to lateral movement...

CVE-2025-27080

CVE-2025-27080 affects Hewlett Packard Enterprise AOS-CX: vulnerabilities in the AOS-CX command line interface could allow an authenticated remote attacker to expose sensitive information. Exploitation could enable access to services outside the impacted switch, potentially enabling lateral movem...

Exploit for Deserialization of Untrusted Data in Apache Tomcat

CVE-2025-24813-Exploit Apache Tomcat Remote Code Execution RC...

The vulnerability of the command-line interface of SiPass IP access controllers allows attackers to execute arbitrary commands and gain unauthorized access to protected information.

The vulnerability of the command-line interface of SiPass IP access controllers is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary commands and gain unauthorized access to protected information...

CVE-2025-27493

A vulnerability has been identified in SiPass integrated AC5102 ACC-G2 All versions V6.4.9, SiPass integrated ACC-AP All versions V6.4.9. Affected devices improperly sanitize user input for specific commands on the telnet command line interface. This could allow an authenticated local administrat...

PT-2025-11187

Name of the Vulnerable Software and Affected Versions: Fortinet FortiDDoS-F versions 7.0.0 through 7.02 Fortinet FortiDDoS-F versions prior to 6.6.3 Description: The software contains an improper neutralization of special elements used in an OS command, which may allow a privileged attacker to...

The command-line interface vulnerability of the FortiSandbox system allows a intruder to gain unauthorized access to protected information.

The vulnerability of the command-line interface of the FortiSandbox threat detection and removal system is related to the use of a strictly encrypted cryptographic key. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the CLI component of the FortiSandbox threat detection and mitigation system allows a perpetrator to elevate their privileges.

The vulnerability of the CLI component of the FortiSandbox threat detection and mitigation system is related to deficiencies in the authentication mechanism. Exploiting this vulnerability can allow attackers to increase their privileges...

Security Updates for Azure CLI (March 2025)

The Microsoft Azure CLI installation on the remote host is missing a security update. It is, therefore, affected by an elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. Note that Nessus has not tested for these issues but has instead relied only on th...

CVE-2025-20138

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of user arguments that are passed to specific CLI...

Palo Alto Networks PAN-OS 安全漏洞

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks, Inc. for its firewall appliances. A security vulnerability exists in Palo Alto Networks PAN-OS that originates from an authenticated administrator being able to read arbitrary files via the CLI...