EUVD-2006-1672

Malware in sbrugna...

EUVD-2015-0787

Malware in sbrugna...

CVE-2022-49979

In the Linux kernel, the following vulnerability has been resolved: net: fix refcount bug in skpsockget 2 Syzkaller reports refcount bug as follows: ------------ cut here ------------ refcountt: saturated; leaking memory. WARNING: CPU: 1 PID: 3605 at lib/refcount.c:19...

CVE-2022-49558

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: double hook unregistration in netns path nftreleasehooks is called from prenetns exit path which unregisters the hooks, then the NETDEVUNREGISTER event is triggered which unregisters the hooks again. 565.2214...

CVE-2024-20455

A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense UTD component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability exists...

VulnCheck KEV: CVE-2017-12240

The Dynamic Host Configuration Protocol DHCP relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system...

Cisco IOS XR 参数注入漏洞

Cisco IOS XR software is a modular and fully distributed network operating system for service provider networks. A command injection vulnerability exists in the CLI of Cisco IOS XR versions prior to 7.3.1. The vulnerability stems from insufficient input validation of user-supplied commands. An...

Catalyst IT Mahara Cross-Site Request Forgery Vulnerability

Catalyst IT Mahara is a social networking system from Catalyst IT Catalyst It in New Zealand. The system includes a blog, resume builder, file manager and more. A cross-site request forgery vulnerability exists in Catalyst IT Mahara 20.10, which can be exploited by an attacker to delete inbox-mai...

Cisco IOS XE SD-WAN Software 默认配置问题漏洞

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. An elevation of privilege vulnerability exists in role-based access control for SD-WAN in Cisco IOS XE. The vulnerability stems from the use of a default configuration for console...

CVE-2019-12651

Multiple vulnerabilities in the web-based user interface Web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to execute commands with elevated privileges on the affected device. For more information about these vulnerabilities, see the Details section of this advisory...

Cisco IOS XE Software CLI parser elevation of privilege vulnerability (CNVD-2018-08182)

Cisco IOS XE Software is an operating system developed by Cisco for its network devices.CLI parser is one of the command line command parsers. The CLI parser in Cisco IOS XE Software is vulnerable to a privilege extraction vulnerability that arises from the program's failure to properly filter...

The vulnerability of the Network Address Translation (NAT) mechanism implemented in the Cisco IOS operating system allows a hacker to cause a service failure and restart the device.

The vulnerability of the Network Address Translation NAT mechanism implemented by the Cisco IOS operating system is related to resource management errors incorrect translation of H.323 messages through the application-level gateway, using the Registration, Admission, and Status RAS protocol...

Cisco IOS XE Software Local Command Execution Vulnerability

Cisco IOS is the interconnected Internet operating system used on most Cisco Systems routers and network switches. The Cisco IOS XE Software startup script does not validate the value of the ROMMON variable effectively, allowing remote attackers to exploit the vulnerability by submitting a specia...

Cisco IOS DHCP Denial of Service Vulnerability

Cisco IOS is an operating system developed by Cisco for its network devices. A security vulnerability exists in the DHCP client implementation of Cisco IOS. A remote attacker can exploit this vulnerability to send specially crafted DHCP messages to conduct denial-of-service attacks...

CVE-2016-9211

A vulnerability in TCP port management in Cisco ONS 15454 Series Multiservice Provisioning Platforms could allow an unauthenticated, remote attacker to cause the controller card to unexpectedly reload. More Information: CSCuw26032. Known Affected Releases: 10.51...

The vulnerability of the Cisco IOS operating system, which allows a malicious actor to trigger a service failure

Cisco IOS software contains a vulnerability in the Multicast Source Discovery Protocol MSDP, which allows a remote attacker to trigger a “disconnect” condition on a router by sending specially crafted MSDP packets...

CVE-2015-0774

Cross-site scripting XSS vulnerability in Cisco Application and Content Networking System ACNS 5.59 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuu70650...

CVE-2015-0774

The CVE-2015-0774 entry covers a Cross-site Scripting (XSS) vulnerability in Cisco’s Application and Content Networking System (ACNS) version 5.5(9), tracked as Bug CSCuu70650. The issue allows an unauthenticated, remote attacker to inject arbitrary script or HTML via a crafted URL. Public detail...

Cisco Application and Content Networking System Cross-Site Scripting Vulnerability

The Cisco Application and Content Networking System is an application and content networking system. A cross-site scripting vulnerability exists in Cisco Application and Content Networking System, which could be exploited by remote attackers to inject malicious script or HTML code that, when view...

Cisco ONS 15454 System Software Denial of Service Vulnerability

The Cisco ONS 15454 is a multi-service provisioning platform that includes sound, video, and data solutions. The Cisco ONS 15454 System Software has a security vulnerability that allows a remote attacker to exhaust the tNetTask CPU and cause the card to reset through a large IP or Ethernet data...