CVE-2023-30501 Authenticated Remote Code Execution in Aruba EdgeConnect Enterprise Command Line Interface

Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as root on the...

PT-2023-3785 · Aruba · Aruba Edgeconnect Enterprise

Name of the Vulnerable Software and Affected Versions: Aruba EdgeConnect Enterprise affected versions not specified Description: The issue exists in the command line interface of Aruba EdgeConnect Enterprise, allowing remote authenticated users to run arbitrary commands on the underlying host...

PT-2023-3389 · Aruba · Aruba Edgeconnect Enterprise

Name of the Vulnerable Software and Affected Versions: Aruba EdgeConnect Enterprise affected versions not specified Description: The issue is related to multiple authenticated path traversal vulnerabilities in the command line interface of the Aruba EdgeConnect Enterprise platform. These...

PT-2023-3784 · Aruba · Aruba Edgeconnect Enterprise

Name of the Vulnerable Software and Affected Versions: Aruba EdgeConnect Enterprise affected versions not specified Description: The issue exists in the command line interface of Aruba EdgeConnect Enterprise, allowing remote authenticated users to run arbitrary commands on the underlying host...

The vulnerability of the command-line interface (CLI) of Zyxel NBG-418N v2 Wi-Fi router software allows a hacker to trigger a service failure.

The vulnerability of the command-line interface CLI of Zyxel NBG-418N v2 Wi-Fi router software involves copying buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

CVE-2023-20098

A vulnerability in the CLI of Cisco SDWAN vManage Software could allow an authenticated, local attacker to delete arbitrary files. This vulnerability is due to improper filtering of directory traversal character sequences within system commands. An attacker with administrative privileges could...

CVE-2023-22788

Multiple authenticated command injection vulnerabilities exist in the Aruba InstantOS and ArubaOS 10 command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system...

CVE-2023-22790

Multiple authenticated command injection vulnerabilities exist in the Aruba InstantOS and ArubaOS 10 command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system...

Aruba Networks InstantOS 命令注入漏洞

Aruba Networks InstantOS is an Arch Linux-based distribution from Aruba Networks, Inc. A security vulnerability exists in Aruba Networks InstantOS and ArubaOS 10, which stems from an authenticated command injection vulnerability in the command line interface that can be exploited by an attacker t...

The vulnerability of the command-line interface of the Cisco Catalyst SD-WAN Manager allows a attacker to delete arbitrary files.

The vulnerability of the command-line interface of the Cisco Catalyst SD-WAN Manager arises due to an input validation error during the processing of directory traversal sequences. Exploiting this vulnerability allows an attacker to send specially crafted HTTP requests and delete arbitrary files...

CVE-2023-27993

A relative path traversal CWE-23 in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a privileged attacker to delete arbitrary directories from the underlying file system via crafted CLI commands...

CVE-2023-27993

Summary: CVE-2023-27993 is a Fortinet FortiADC vulnerability describing a relative path traversal (CWE-23) that could let a privileged attacker delete arbitrary directories via crafted CLI commands. Affected software: FortiADC versions 7.2.0 and prior to 7.1.1. Root cause / impact: Presence of a ...

Fortinet FortiADC 路径遍历漏洞

Fortinet FortiADC is an application delivery controller from Fortinet. A security vulnerability exists in FortiADC version 7.2.0 and versions prior to 7.1.1 that stems from the presence of a relative path traversal, which allows a privileged attacker to remove arbitrary directories from the...

The vulnerability of the command-line interface (CLI) of Cisco Aironet Access Point software allows a attacker to execute arbitrary commands or cause service interruptions.

The vulnerability of the command-line interface CLI of Cisco Aironet Access Point microprogramming software exists because measures to neutralize the special elements used in the operating system command are not taken. Exploiting this vulnerability can allow an attacker to execute arbitrary...

PT-2023-22116 · Xcc · Xcc

Name of the Vulnerable Software and Affected Versions: XCC affected versions not specified Description: A valid, authenticated XCC user with read-only permissions can modify custom user roles on other user accounts and the user trespass message through the XCC CLI. There is no exposure if SSH is...

CVE-2023-2273

Rapid7 Insight Agent token handler versions 3.2.6 and below, suffer from a Directory Traversal vulnerability whereby unsanitized input from a CLI argument flows into io.ioutil.WriteFile, where it is used as a path. This can result in a Path Traversal vulnerability and allow an attacker to write...

Fedora: Security Advisory for doctl (FEDORA-2023-3737bc1c0a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 37 Update: doctl-1.93.1-2.fc37

The official command line interface for the DigitalOcean API...

CVE-2023-28980

A Use After Free vulnerability in the routing protocol daemon of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated attacker with low privileges to cause Denial of Service DoS. In a rib sharding scenario the rpd process will crash shortly after specific CLI command is...

The vulnerability of the command-line interface (CLI) of Cisco Aironet Access Point microprogramming software allows a attacker to execute arbitrary commands with root privileges.

The vulnerability of the command-line interface CLI of Cisco Aironet Access Point software exists because measures to neutralize special elements used in operating system commands have not been taken. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root...