EUVD-2022-42515

Malicious code in bioql PyPI...

CVE-2022-3086

Cradlepoint IBR600 NCOS versions 6.5.0.160bc2e and prior are vulnerable to shell escape, which enables local attackers with non-superuser credentials to gain full, unrestrictive shell access which may allow an attacker to execute arbitrary code...

Code injection

Cradlepoint IBR600 NCOS versions 6.5.0.160bc2e and prior are vulnerable to shell escape, which enables local attackers with non-superuser credentials to gain full, unrestrictive shell access which may allow an attacker to execute arbitrary code...

CVE-2022-3086 Cradlepoint IBR600 Command Injection

Cradlepoint IBR600 NCOS versions 6.5.0.160bc2e and prior are vulnerable to shell escape, which enables local attackers with non-superuser credentials to gain full, unrestrictive shell access which may allow an attacker to execute arbitrary code...

CISA Releases Two Industrial Control Systems Advisories

CISA has released two 2 Industrial Control Systems ICS advisories on November 17, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for...

Cradlepoint IBR600 命令注入漏洞

The Cradlepoint IBR600 is a router from Cradlepoint USA. The Cradlepoint IBR600 suffers from a command injection vulnerability that stems from poor shell escaping. An attacker can exploit this vulnerability to gain unrestricted shell access...