7 matches found
CVE-2025-54418
CodeIgniter is a PHP full-stack web framework. A command injection vulnerability present in versions prior to 4.6.2 affects applications that use the ImageMagick handler for image processing imagick as the image library and either allow file uploads with user-controlled filenames and process...
Exploit for Code Injection in Vmware Spring_Framework
Spring Boot CVE-2022-22965 Docker PoC for CVE-2022-22965 with...
PT-2020-2238 · Cisco · Firepower Threat Defense +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA and Firepower Threat Defense FTD Software affected versions not specified Cisco Firepower Threat Defense FTD Software affected versions not specified Description: The issue is related to the improper...
CVE-2019-1808 Cisco MDS 9700 Series Multilayer Directors and Nexus 7000/7700 Series Switches Software Patch Signature Verification Vulnerability
A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software patch on an affected device. The vulnerability is due to improper verification of digital signature...
PT-2019-2415 · Cisco · Cisco Nx-Os +1
Name of the Vulnerable Software and Affected Versions: Cisco NX-OS Software affected versions not specified Description: A vulnerability in the Image Signature Verification feature could allow an authenticated, local attacker with administrator-level credentials to install a malicious software...
CVE-2017-12332
CVE-2017-12332 affects Cisco NX-OS System Software on multiple Cisco Nexus series switches and UCS Manager. The issue stems from insufficient restrictions in the patch installation process, allowing an authenticated, local attacker with valid administrator credentials to install a crafted patch i...
Cisco NX-OS System Software Patch Installation Arbitrary File Write Vulnerability
A vulnerability in Cisco NX-OS System Software patch installation could allow an authenticated, local attacker to write a file to arbitrary locations. The vulnerability is due to insufficient restrictions in the patch installation process. An attacker could exploit this vulnerability by installin...