106 matches found
CVE-2022-23683
Authenticated command injection vulnerabilities exist in the AOS-CX Network Analytics Engine via NAE scripts. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system, leading to a complete...
Adaptive Detection of Polymorphic Malware: Leveraging Mutation Engines and YARA Rules for Enhanced Security
Polymorphic malware continually alters its structure to evade signature-based defences, challenging both commercial antivirus AV and enterprise detection systems. This study introduces a reproducible framework for analysing eight polymorphic behaviours-junk code insertion, control-flow obfuscatio...
EUVD-2022-25991
Malicious code in bioql PyPI...
EUVD-2025-16019
Malicious code in bioql PyPI...
EUVD-2022-28622
Malicious code in bioql PyPI...
EUVD-2025-11455
Malicious code in bioql PyPI...
EUVD-2022-26047
Malicious code in bioql PyPI...
EUVD-2023-24281
Malicious code in bioql PyPI...
EUVD-2022-25913
Malicious code in bioql PyPI...
EUVD-2023-24282
Malicious code in bioql PyPI...
EUVD-2025-16018
Malicious code in bioql PyPI...
The vulnerability of the components of the Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager, which are used in network traffic analysis, network detection, and response systems, allows attackers to compromise the integrity of protected information.
The vulnerability of the API components of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager relates to improper authentication. Exploiting this vulnerability can allow an attacker to compromise the integrity of the protected information...
CVE-2025-20256
A vulnerability in the web-based management interface of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating...
CVE-2025-20257
A vulnerability in an API subsystem of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with low privileges to generate fraudulent findings that are used to generate alarms and alerts on an affected product. Th...
CVE-2023-1168
An authenticated remote code execution vulnerability exists in the AOS-CX Network Analytics Engine. Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system, leading to a complete compromise of the switc...
CVE-2022-20663
A vulnerability in the web-based management interface of Cisco Secure Network Analytics, formerly Stealthwatch Enterprise, could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. The vulnerability is due to insufficient...
CVE-2025-20257
A vulnerability in an API subsystem of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with low privileges to generate fraudulent findings that are used to generate alarms and alerts on an affected product. Th...
CVE-2025-20256
A vulnerability in the web-based management interface of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating...
CVE-2025-20257
A vulnerability in an API subsystem of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with low privileges to generate fraudulent findings that are used to generate alarms and alerts on an affected product. Th...
CVE-2025-20257 Cisco Secure Network Analytics API Authorization Vulnerability
A vulnerability in an API subsystem of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with low privileges to generate fraudulent findings that are used to generate alarms and alerts on an affected product. Th...