CVE-2023-31425

A vulnerability in the fosexec command of Brocade Fabric OS after Brocade Fabric OS v9.1.0 and, before Brocade Fabric OS v9.1.1 could allow a local authenticated user to perform privilege escalation to root by breaking the rbash shell. Starting with Fabric OS v9.1.0, “root” account access is...

EUVD-2023-35733

Malicious code in bioql PyPI...

EUVD-2025-20791

Malicious code in bioql PyPI...

CVE-2025-27027

A user with vpuser credentials that opens an SSH connection to the device, gets a restricted shell rbash that allows only a small list of allowed commands. This vulnerability enables the user to get a full-featured Linux shell, bypassing the rbash restrictions...

CVE-2025-27027

A user with vpuser credentials that opens an SSH connection to the device, gets a restricted shell rbash that allows only a small list of allowed commands. This vulnerability enables the user to get a full-featured Linux shell, bypassing the rbash restrictions...

CVE-2025-27027

CVE-2025-27027 concerns Radiflow iSAP Smart Collector. Multiple connected sources describe a scenario where a user with vpuser credentials who opens an SSH connection can escape rbash restrictions and obtain a full-featured Linux shell. The root cause, as stated in PT-2025-28859, involves bypassi...

Linux Distros Unpatched Vulnerability : CVE-2019-9924

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command with the permissions of the...

Oracle Linux 7 : bash (ELSA-2020-1113)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-1113 advisory. 4.2.46-34 - BASHCMD should not be writable in restricted shell Resolves: 1693181 Tenable has extracted the preceding description block directly from the Oracle...

CVE-2023-31425

A vulnerability in the fosexec command of Brocade Fabric OS after Brocade Fabric OS v9.1.0 and, before Brocade Fabric OS v9.1.1 could allow a local authenticated user to perform privilege escalation to root by breaking the rbash shell. Starting with Fabric OS v9.1.0, “root” account access is...

Privilege escalation

A vulnerability in the fosexec command of Brocade Fabric OS after Brocade Fabric OS v9.1.0 and, before Brocade Fabric OS v9.1.1 could allow a local authenticated user to perform privilege escalation to root by breaking the rbash shell. Starting with Fabric OS v9.1.0, “root” account access is...

CVE-2023-31425

CVE-2023-31425 affects Brocade Fabric OS: a vulnerability in the fosexec command could allow a local authenticated user to escalate to root by breaking rbash. Affected: Fabric OS v9.1.0+ up to before v9.1.1; root access is disabled starting with v9.1.0. Remediation: security updates released in F...

Brocade Fabric OS Operating System Command Injection Vulnerability

Brocade Fabric OS FOS is a set of embedded operating systems used in devices such as switches and routers from Brocade USA. A security vulnerability exists in Brocade Fabric OS versions 9.1.0 through 9.1.1, which stems from an elevation of privilege vulnerability in the fosexec command. An attack...

K00866128: Bash vulnerability CVE-2019-9924

Security Advisory Description rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command with the permissions of the shell. CVE-2019-9924 Impact There is no impact; F5 products are not affected by this vulnerability. Securi...

CVE-2021-27796

A vulnerability in Brocade Fabric OS versions before Brocade Fabric OS v8.0.1b, v7.4.1d could allow an authenticated attacker within the restricted shell environment rbash as either the “user” or “factory” account, to read the contents of any file on the filesystem utilizing one of a few availabl...

CVE-2021-27796

The CVE-2021-27796 issue affects Brocade Fabric OS prior to versions that include fixed releases v8.0.1b and v7.4.1d. An authenticated user in the restricted shell (rbash) on the user or factory account can read arbitrary files on the filesystem by leveraging one of several binaries, enabling pot...

NewStart CGSL CORE 5.05 / MAIN 5.05 : bash Vulnerability (NS-SA-2020-0101)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has bash packages installed that are affected by a vulnerability: - rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command with the permissions of th...

NewStart CGSL CORE 5.04 / MAIN 5.04 : bash Vulnerability (NS-SA-2020-0067)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has bash packages installed that are affected by a vulnerability: - rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command with the permissions of th...

Amazon Linux 2 : bash (ALAS-2020-1503)

The version of bash installed on the remote host is prior to 4.2.46-34. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1503 advisory. rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command...

Medium: bash

Issue Overview: rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command with the permissions of the shell. CVE-2019-9924 Affected Packages: bash Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository...

bash: BASH_CMD is writable in restricted bash shells

rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command with the permissions of the shell...