48 matches found
EUVD-2020-0018
Malware in sbrugna...
CVE-2025-20292 Cisco NXOS Software Command Injection Vulnerability
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute a command injection attack on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid user credentials on the affected device. This...
Cisco NX-OS Software 安全漏洞
Cisco NX-OS Software is a suite of data center-grade operating system software used by switches from Cisco USA. A security vulnerability exists in Cisco NX-OS Software that stems from insufficient input validation when parsing IS-IS packets, which could lead to a denial-of-service attack...
CISCO-SA-20180620-NXOSSNMP
creationtimestamp| type| source ---|---|--- 2024-12-17 09:00:37+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113667342829939583...
CISCO-SA-20181017-NXOS
creationtimestamp| type| source ---|---|--- 2024-12-17 09:00:36+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113667342760830380...
CISCO-SA-20180620-NXOS
creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:53+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666794789041150...
CISCO-SA-20190306-NXOSLDAP
creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:52+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666794632028669...
CISCO-SA-20190731-NXOS
creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:52+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666794684572123...
CISCO-SA-20190306-NXOS
creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:49+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666793674930967 2024-12-17 06:41:53+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666794772176758 2024-12-17 09:00:31+00:00| seen...
CISCO-SA-20190515-NXOS
creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:01+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666792915206648 2024-12-17 06:41:07+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666792953577446 2024-12-17 06:41:31+00:00| seen...
CVE-2024-20285
A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to escape the Python sandbox and gain unauthorized access to the underlying operating system of the device. The vulnerability is due to insufficient validation of...
Amazon Linux 2 : ansible (ALASANSIBLE2-2023-009)
The version of ansible installed on the remote host is prior to 2.9.5-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2ANSIBLE2-2023-009 advisory. A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone o...
Important: ansible
Issue Overview: A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by...
The vulnerability of the IS-IS routing protocol implementation in the Cisco NX-OS operating system allows a hacker to perform a reboot of the device. This vulnerability is present in Cisco Nexus series 3000 and 9000 switches.
The vulnerability of the IS-IS routing protocol implementation in the Cisco NX-OS operating system for Cisco Nexus 3000 and 9000 switches is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to perform a reboot of the device by sending specially...
Cisco ASR 9000 Series Aggregation Services Routers tmp Files Denial of Service (CVE-2015-4277)
The global-configuration implementation on Cisco ASR 9000 devices with software 5.1.3 and 5.3.0 improperly closes vty sessions after a commit/end operation, which allows local users to cause a denial of service tmp/config file creation, memory consumption, and device hang via unspecified vectors,...
The vulnerability of the nxos_file_copy module in the Ansible configuration management system allows a hacker to execute arbitrary commands.
The vulnerability of the nxosfilecopy module in the Ansible configuration management system is related to incorrect external manipulation of the file name or path. Exploiting this vulnerability allows an attacker to execute arbitrary commands...
GHSA-FRXJ-5J27-F8RF Externally Controlled Reference to a Resource in Another Sphere, Improper Input Validation, and External Control of File Name or Path in Ansible
A vulnerability was found in Ansible Engine versions 2.9.x before 2.9.3, 2.8.x before 2.8.8, 2.7.x before 2.7.16 and earlier, where in Ansible's nxosfilecopy module can be used to copy files to a flash or bootflash on NXOS devices. Malicious code could craft the filename parameter to perform OS...
Externally Controlled Reference to a Resource in Another Sphere, Improper Input Validation, and External Control of File Name or Path in Ansible
A vulnerability was found in Ansible Engine versions 2.9.x before 2.9.3, 2.8.x before 2.8.8, 2.7.x before 2.7.16 and earlier, where in Ansible's nxosfilecopy module can be used to copy files to a flash or bootflash on NXOS devices. Malicious code could craft the filename parameter to perform OS...
Cisco NX-OS Software Image Signature Verification (cisco-sa-20190306-nxos-sig-verif)
According to its self-reported version, Cisco NX-OS Software for Nexus 9000 Series Fabric Switches ACI Mode is affected by a denial of service DoS vulnerability exists in Fibre Channel over Ethernet N-port Virtualization due to incorrect processing of FCoE packets. An unauthenticated, adjacent...
Cisco Configuration Importer
This module imports a Cisco IOS or NXOS device configuration. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco Configuration Importer', 'Description' = %q This module imports a Cisco IOS o...