4 matches found
Cisco HyperFlex Software Command Injection (cisco-sa-20190220-hyperflex-injection)
According to its self-reported version, Cisco HyperFlex HX Data Platform is affected by a vulnerability in the cluster service manager due to insufficient input validation. An unauthenticated, adjacent attacker can exploit this, by connecting to the cluster service manager and injecting commands...
CVE-2018-15380
creationtimestamp| type| source ---|---|--- 2019-02-21 03:14:08+00:00| seen| https://t.me/cibsecurity/2649...
CVE-2018-15380
Cisco HyperFlex Software contains a vulnerability in the cluster service manager due to insufficient input validation. An unauthenticated, adjacent attacker can connect to the cluster service manager and inject commands into the bound process, enabling execution of commands on the affected host a...
CVE-2018-15380 Cisco HyperFlex Software Command Injection Vulnerability
A vulnerability in the cluster service manager of Cisco HyperFlex Software could allow an unauthenticated, adjacent attacker to execute commands as the root user. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by connecting to the cluster...