1775 matches found
Cisco IOS XR 安全漏洞
Cisco IOS XR is an operating system developed by Cisco USA for its network devices. A security vulnerability exists in Cisco IOS XR that stems from incorrect validation of parameters passed to specific CLI commands...
Cisco IOS XR 安全漏洞
Cisco IOS XR is an operating system developed by Cisco USA for its network devices. A security vulnerability exists in Cisco IOS XR that stems from insufficient validation of user parameters passed to specific CLI commands...
Palo Alto Networks PAN-OS 9.1.x < 9.1.15 / 10.0.x < 10.0.10 / 10.1.x < 10.1.1 Vulnerability
The version of Palo Alto Networks PAN-OS running on the remote host is 9.1.x prior to 9.1.15 or 10.0.x prior to 10.0.10 or 10.1.x prior to 10.1.1. It is, therefore, affected by a vulnerability. An improper neutralization of matching symbols vulnerability in the Palo Alto Networks PAN-OS command...
The vulnerability of the CLI interface of the Cisco Identity Services Engine allows a perpetrator to execute arbitrary commands with root privileges.
The vulnerability of the CLI interface of the Cisco Identity Services Engine exists because measures to neutralize special elements used in operating system commands are not taken. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root privileges by sending a...
The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to improper code generation management, allows a hacker to execute arbitrary code.
The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to incorrect representation of the web application and command-line interface due to improper code generation management. Exploiting this vulnerability allows a malicious actor to execute...
BIT-GITLAB-2024-3958 Improper Control of Generation of Code ('Code Injection') in GitLab
An issue has been discovered in GitLab CE/EE affecting all versions before 17.0.6, 17.1 prior to 17.1.4, and 17.2 prior to 17.2.2. An issue was found that allows someone to abuse a discrepancy between the Web application display and the git command line interface to social engineer victims into...
CVE-2024-7477
A SQL injection vulnerability was found which could allow a command line interface CLI user with administrative privileges to execute arbitrary queries against the Avaya Aura System Manager database. Affected versions include 10.1.x.x and 10.2.x.x. Versions prior to 10.1 are end of manufacturer...
CVE-2024-7480 Improper access control in Avaya Aura System Manager
An Improper access control vulnerability was found in Avaya Aura System Manager which could allow a command-line interface CLI user with administrative privileges to read arbitrary files on the system. Affected versions include 10.1.x.x and 10.2.x.x. Versions prior to 10.1 are end of manufacturer...
CVE-2024-3958 Improper Control of Generation of Code ('Code Injection') in GitLab
An issue has been discovered in GitLab CE/EE affecting all versions before 17.0.6, 17.1 prior to 17.1.4, and 17.2 prior to 17.2.2. An issue was found that allows someone to abuse a discrepancy between the Web application display and the git command line interface to social engineer victims into...
PT-2024-6567 · Aruba · Arubaos
Name of the Vulnerable Software and Affected Versions: ArubaOS affected versions not specified Description: An authenticated command injection issue exists in the ArubaOS command line interface, allowing successful exploitation to result in the ability to inject shell commands on the underlying...
CVE-2024-41134
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as...
CVE-2024-41133
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as...
CVE-2024-41135
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as...
CVE-2024-41135 Authenticated Remote Code Execution in HPE Aruba Networking EdgeConnect SD-WAN Command Line Interface
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as...
CVE-2024-41135 Authenticated Remote Code Execution in HPE Aruba Networking EdgeConnect SD-WAN Command Line Interface
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as...
CVE-2024-41135
The CVE-2024-41135 affects HPE Aruba Networking EdgeConnect SD-WAN gateway CLI. The vulnerability allows remote authenticated users to execute arbitrary commands on the underlying host with root privileges, enabling complete system compromise. Documented impact is high (CVSS 3.1: AV:N/AC:L/PR:H/U...
CVE-2024-41134 Authenticated Remote Code Execution in HPE Aruba Networking EdgeConnect SD-WAN Command Line Interface
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as...
CVE-2024-41134
CVE-2024-41134 affects HPE Aruba Networking EdgeConnect SD-WAN gateway CLI. The vulnerability allows remote authenticated users to execute arbitrary commands on the underlying host with root privileges, potentially leading to full system compromise. Documented impact is high (CVSS 3.1: 7.2, Netwo...
CVE-2024-41133 Authenticated Remote Code Execution in HPE Aruba Networking EdgeConnect SD-WAN Command Line Interface
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as...
CVE-2024-41133 Authenticated Remote Code Execution in HPE Aruba Networking EdgeConnect SD-WAN Command Line Interface
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as...