3 matches found
Cisco FXOS Software Command Injection (cisco-sa-20191002-fxos-cmd-inject)
According to its self-reported version, Cisco FXOS Software is affected by multiple vulnerabilities in the CLI due to insufficient input validation. An unauthenticated, local attacker can exploit this, by including crafted arguments to specific commands, in order to execute arbitrary commands on...
Cisco FTD Software Command Injection (cisco-sa-20191002-fxos-cmd-inject)
According to its self-reported version, Cisco Firepower Threat Defense FTD Software is affected by multiple vulnerabilities in the CLI due to insufficient input validation. An unauthenticated, local attacker can exploit this, by including crafted arguments to specific commands, in order to execut...
CVE-2019-12699
CVE-2019-12699 concerns Cisco FXOS Software and Firepower Threat Defense (FTD) CLI command injection vulnerabilities due to insufficient input validation. An authenticated, local attacker could exploit crafted arguments to specific CLI commands to execute arbitrary OS commands with root privilege...