EUVD-2020-0018

Malware in sbrugna...

CVE-2025-20292 Cisco NXOS Software Command Injection Vulnerability

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute a command injection attack on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid user credentials on the affected device. This...

Cisco NX-OS Software 安全漏洞

Cisco NX-OS Software is a suite of data center-grade operating system software used by switches from Cisco USA. A security vulnerability exists in Cisco NX-OS Software that stems from insufficient input validation when parsing IS-IS packets, which could lead to a denial-of-service attack...

CISCO-SA-20180620-NXOSSNMP

creationtimestamp| type| source ---|---|--- 2024-12-17 09:00:37+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113667342829939583...

CISCO-SA-20181017-NXOS

creationtimestamp| type| source ---|---|--- 2024-12-17 09:00:36+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113667342760830380...

CISCO-SA-20180620-NXOS

creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:53+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666794789041150...

CISCO-SA-20190306-NXOSLDAP

creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:52+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666794632028669...

CISCO-SA-20190731-NXOS

creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:52+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666794684572123...

CISCO-SA-20190306-NXOS

creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:49+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666793674930967 2024-12-17 06:41:53+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666794772176758 2024-12-17 09:00:31+00:00| seen...

CISCO-SA-20190515-NXOS

creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:01+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666792915206648 2024-12-17 06:41:07+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666792953577446 2024-12-17 06:41:31+00:00| seen...

CVE-2024-20285

A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to escape the Python sandbox and gain unauthorized access to the underlying operating system of the device. The vulnerability is due to insufficient validation of...

Amazon Linux 2 : ansible (ALASANSIBLE2-2023-009)

The version of ansible installed on the remote host is prior to 2.9.5-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2ANSIBLE2-2023-009 advisory. A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone o...

Important: ansible

Issue Overview: A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by...

Cisco ASR 9000 Series Aggregation Services Routers tmp Files Denial of Service (CVE-2015-4277)

The global-configuration implementation on Cisco ASR 9000 devices with software 5.1.3 and 5.3.0 improperly closes vty sessions after a commit/end operation, which allows local users to cause a denial of service tmp/config file creation, memory consumption, and device hang via unspecified vectors,...

GHSA-FRXJ-5J27-F8RF Externally Controlled Reference to a Resource in Another Sphere, Improper Input Validation, and External Control of File Name or Path in Ansible

A vulnerability was found in Ansible Engine versions 2.9.x before 2.9.3, 2.8.x before 2.8.8, 2.7.x before 2.7.16 and earlier, where in Ansible's nxosfilecopy module can be used to copy files to a flash or bootflash on NXOS devices. Malicious code could craft the filename parameter to perform OS...

Externally Controlled Reference to a Resource in Another Sphere, Improper Input Validation, and External Control of File Name or Path in Ansible

A vulnerability was found in Ansible Engine versions 2.9.x before 2.9.3, 2.8.x before 2.8.8, 2.7.x before 2.7.16 and earlier, where in Ansible's nxosfilecopy module can be used to copy files to a flash or bootflash on NXOS devices. Malicious code could craft the filename parameter to perform OS...

Cisco NX-OS Software Image Signature Verification (cisco-sa-20190306-nxos-sig-verif)

According to its self-reported version, Cisco NX-OS Software for Nexus 9000 Series Fabric Switches ACI Mode is affected by a denial of service DoS vulnerability exists in Fibre Channel over Ethernet N-port Virtualization due to incorrect processing of FCoE packets. An unauthenticated, adjacent...

Cisco Configuration Importer

This module imports a Cisco IOS or NXOS device configuration. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco Configuration Importer', 'Description' = %q This module imports a Cisco IOS o...

Cisco Gather Device General Information

This module collects a Cisco IOS or NXOS device information and configuration. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco Gather Device General Information', 'Description' = %q This...

openSUSE: Security Advisory for ansible (openSUSE-SU-2020:0513-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...