5 matches found
Code injection
The Nautobot Device Onboarding plugin uses the netmiko and NAPALM libraries to simplify the onboarding process of a new device into Nautobot down to, in many cases, an IP Address and a Location. Starting in version 2.0.0 and prior to version 3.0.0, credentials provided to onboarding task are...
CVE-2023-48700 Clear Text Credentials Exposed via Onboarding Task
The Nautobot Device Onboarding plugin uses the netmiko and NAPALM libraries to simplify the onboarding process of a new device into Nautobot down to, in many cases, an IP Address and a Location. Starting in version 2.0.0 and prior to version 3.0.0, credentials provided to onboarding task are...
CVE-2023-48700
The CVE-2023-48700 issue affects the Nautobot Device Onboarding plugin. In versions 2.0.0 through prior to 3.0.0, credentials supplied to onboarding tasks are exposed in Job Results, allowing clear-text credentials to be retrieved from database entries. Version 3.0.0 fixes the vulnerability. Miti...
CVE-2023-48700 Clear Text Credentials Exposed via Onboarding Task
The Nautobot Device Onboarding plugin uses the netmiko and NAPALM libraries to simplify the onboarding process of a new device into Nautobot down to, in many cases, an IP Address and a Location. Starting in version 2.0.0 and prior to version 3.0.0, credentials provided to onboarding task are...
PRTG 18.1.39.1648 Stack Overflow
Exploit Title: PRTG 18.1.39.1648 - Stack Overflow Date: 2018-04-21 Exploit Author: Lucas "luriel" Carmo Vendor Homepage: https://www.paessler.com/prtg Software Link: https://www.paessler.com/download/prtg-download Version: 18.1.39.1648 CVE : CVE-2018-10253 Post Reference:...