4 matches found
Security Bulletin: IBM Tivoli Network Manager is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2019-1757)
Summary Apache log4j V1 is used by IBM Tivoli Network Manager as part of its logging infrastructure. This fix removed Apache log4j V1CVE-2019-1757 Vulnerability Details CVEID:CVE-2019-17571 DESCRIPTION: Apache Log4j could allow a remote attacker to execute arbitrary code on the system, caused by...
Cisco IOS and IOS XE Software Smart Call Home Certificate Validation Vulnerability
According to its self-reported version, Cisco IOS XE Software is affected by following vulnerability - A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an...
CVE-2019-1757
A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an invalid certificate. The vulnerability is due to insufficient certificate validation by the affected...
CVE-2019-1757
CVE-2019-1757 concerns Cisco IOS/IOS XE Smart Call Home certificate validation. The issue arises from insufficient certificate validation, enabling an unauthenticated, remote attacker to read sensitive data via a crafted certificate and potentially perform MITM to decrypt user connections. Connec...