CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

OSV•added 2020/08/17 4:15 p.m.•1 views

CVE-2020-13122

The novish command-line interface, included in NoviFlow NoviWare before NW500.2.12 and deployed on NoviSwitch devices, is vulnerable to command injection in the "show status destination ipaddr" command. This could be used by a read-only user monitoring group or admin to execute commands on the...

8.8CVSS7.4AI score

Exploits0References1

NVD•added 2020/08/17 4:15 p.m.•7 views

CVE-2020-13122

8.8CVSS9.1AI score0.22458EPSS

Exploits1References1

Prion•added 2020/08/17 4:15 p.m.•9 views

Command injection

8CVSS9AI score0.22458EPSS

Exploits1References1Affected Software1

Cvelist•added 2020/08/17 3:59 p.m.•12 views

CVE-2020-13122

9.1AI score0.22458EPSS

Exploits1References1

CVE•added 2020/08/17 3:59 p.m.•37 views

CVE-2020-13122

The CVE-2020-13122 entry concerns the novish command-line interface in NoviFlow NoviWare prior to NW500.2.12, deployed on NoviSwitch devices. The vulnerability is a command-injection in the CLI command “show status destination ipaddr,” allowing a read-only monitoring user or an admin to execute a...

8.8CVSS9AI score0.22458EPSS

Exploits1References1Affected Software1

CNVD•added 2017/08/23 12:0 a.m.•1 views

NoviFlow NoviWare and NoviSwitch Device Buffer Overflow Vulnerability

NoviFlow NoviWare and NoviSwitch devices are both products of NoviFlow Canada.NoviSwitch devices are a series of switching devices.NoviWare is the switching software used in... A buffer overflow vulnerability exists in the 'show log cli' command in the novish command line interface in NoviFlow...

10CVSS9.8AI score0.24115EPSS

Exploits4References1

CNVD•added 2017/08/23 12:0 a.m.•1 views

NoviFlow NoviWare and NoviSwitch Device Stack Buffer Overflow Vulnerability

NoviFlow NoviWare and NoviSwitch devices are both products of NoviFlow Canada.NoviSwitch devices are a series of switching devices.NoviWare is the switching software used in... A stack buffer overflow vulnerability exists in the Network interface of the cliengine and noviengine services in NoviFl...

10CVSS9.8AI score0.28638EPSS

Exploits4References1

CNVD•added 2017/08/23 12:0 a.m.•2 views

NoviFlow NoviWare and NoviSwitch Device Remote Code Execution Vulnerability

NoviFlow NoviWare and NoviSwitch devices are both products of NoviFlow Canada.NoviSwitch devices are a series of switching devices.NoviWare is the switching software used in... A security vulnerability exists in the network interface of noviprocessmanagerdaemon in NoviFlow NoviWare NW400.2.6 and...

10CVSS8.3AI score0.19108EPSS

Exploits0References1

ATTACKERKB•added 2017/08/22 5:29 p.m.•1 views

CVE-2017-12786

Network interfaces of the cliengine and noviengine services, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, can be inadvertently exposed if an operator attempts to modify ACLs, because of a bug when ACL modifications are applied. This could be...

10CVSS6.6AI score0.28638EPSS

Exploits4References2

NVD•added 2017/08/22 5:29 p.m.•9 views

CVE-2017-12787

A network interface of the noviprocessmanagerdaemon service, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, can be inadvertently exposed if an operator attempts to modify ACLs, because of a bug when ACL modifications are applied. This could be...

10CVSS8.1AI score0.19108EPSS

Exploits0References1

NVD•added 2017/08/22 5:29 p.m.•9 views

CVE-2017-12785

The novish command-line interface, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, is prone to a buffer overflow in the "show log cli" command. This could be used by a read-only user monitor role to gain privileged root code execution on the...

10CVSS10AI score0.24115EPSS

Exploits4References1

Prion•added 2017/08/22 5:29 p.m.•9 views

Stack overflow

10CVSS8.1AI score0.19108EPSS

Exploits0References1Affected Software1

Prion•added 2017/08/22 5:29 p.m.•12 views

Stack overflow

10CVSS9.8AI score0.28638EPSS

Exploits4References1Affected Software1

Prion•added 2017/08/22 5:29 p.m.•12 views

Command injection

10CVSS10AI score0.24115EPSS

Exploits4References1Affected Software1

ATTACKERKB•added 2017/08/22 5:29 p.m.•0 views

CVE-2017-12785

10CVSS6.5AI score0.24115EPSS

Exploits4References2

NVD•added 2017/08/22 5:29 p.m.•10 views

CVE-2017-12786

10CVSS9.9AI score0.28638EPSS

Exploits4References1

CVE•added 2017/08/22 5:0 p.m.•65 views

CVE-2017-12786

The CVE-2017-12786 entry affects NoviFlow NoviWare NW400.2.6 and NoviSwitch devices. A stack-based buffer overflow in the cliengine/noviengine network interfaces can be triggered during ACL modifications, allowing remote, unauthenticated attackers to achieve privileged (root) code execution on th...

10CVSS9.8AI score0.28638EPSS

Exploits4References1Affected Software1

Cvelist•added 2017/08/22 5:0 p.m.•13 views

CVE-2017-12787

8.5AI score0.19108EPSS

Exploits0References1

Cvelist•added 2017/08/22 5:0 p.m.•15 views

CVE-2017-12786

9.9AI score0.28638EPSS

Exploits4References1

CVE•added 2017/08/22 5:0 p.m.•57 views

CVE-2017-12787

The vulnerability CVE-2017-12787 affects NoviFlow/NoviWare NW400.2.6 and NoviSwitch devices, where the network interface of the novi_process_manager_daemon can be inadvertently exposed during ACL modifications. The bug can allow remote, unauthenticated attackers to execute code with root privileg...

10CVSS8.1AI score0.19108EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by