Lucene search
K

15298 matches found

Cvelist
Cvelist
added 2023/02/28 4:47 p.m.17 views

CVE-2023-22764 Authenticated Remote Command Execution in the ArubaOS Command Line Interface

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS7.8AI score0.01538EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/28 4:47 p.m.10 views

CVE-2023-22764 Authenticated Remote Command Execution in the ArubaOS Command Line Interface

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS7.7AI score0.01538EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/28 4:46 p.m.8 views

CVE-2023-22763 Authenticated Remote Command Execution in the ArubaOS Command Line Interface

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS7.7AI score0.01538EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/28 4:46 p.m.29 views

CVE-2023-22762 Authenticated Remote Command Execution in the ArubaOS Command Line Interface

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS7.8AI score0.01538EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/28 4:46 p.m.7 views

CVE-2023-22762 Authenticated Remote Command Execution in the ArubaOS Command Line Interface

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS8.2AI score0.01538EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/28 4:42 p.m.6 views

CVE-2023-22761 Authenticated Remote Command Execution in ArubaOS Web-based Management Interface

Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an attacker to full...

7.2CVSS8.4AI score0.01618EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/28 4:42 p.m.18 views

CVE-2023-22760 Authenticated Remote Command Execution in ArubaOS Web-based Management Interface

Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an attacker to full...

7.2CVSS7.8AI score0.01618EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/28 4:41 p.m.27 views

CVE-2023-22759 Authenticated Remote Command Execution in ArubaOS Web-based Management Interface

Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an attacker to full...

7.2CVSS7.8AI score0.01618EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/28 4:40 p.m.29 views

CVE-2023-22758 Authenticated Remote Command Execution in ArubaOS Web-based Management Interface

Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an attacker to full...

7.2CVSS7.8AI score0.01618EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/02/28 12:0 a.m.7 views

PT-2023-1914 · Aruba · Arubaos

Name of the Vulnerable Software and Affected Versions: ArubaOS affected versions not specified Description: The issue exists due to the lack of neutralization of special elements used in the operating system command. This allows a remote attacker to execute arbitrary commands on the underlying...

8.3CVSS7.2AI score0.01538EPSS
Exploits0References6
0day.today
0day.today
added 2023/02/27 12:0 a.m.452 views

Froxlor 2.0.6 Remote Command Execution Exploit

Froxlor versions 2.0.6 and below suffer from a bug that allows authenticated users to change the application logs path to any directory on the OS level which the user www-data can write without restrictions from the backend which leads to writing a malicious Twig template that the application wil...

8.8CVSS8.6AI score0.97653EPSS
Exploits8
Cvelist
Cvelist
added 2023/02/24 11:35 a.m.20 views

CVE-2023-25691 Apache Airflow Google Provider: Google Cloud Sql Provider Remote Command Execution

Improper Input Validation vulnerability in the Apache Airflow Google Provider. This issue affects Apache Airflow Google Provider versions before 8.10.0...

9.7AI score0.01583EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/02/24 11:35 a.m.6 views

CVE-2023-25691 Apache Airflow Google Provider: Google Cloud Sql Provider Remote Command Execution

Improper Input Validation vulnerability in the Apache Airflow Google Provider. This issue affects Apache Airflow Google Provider versions before 8.10.0...

9.5AI score0.01583EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/02/24 12:0 a.m.5 views

PT-2023-20249

Name of the Vulnerable Software and Affected Versions Apache Airflow Google Provider versions prior to 8.10.0 Description The issue is related to an Improper Input Validation vulnerability in the Apache Airflow Google Provider. This vulnerability can potentially lead to a Denial of Service and...

7.5CVSS7.3AI score0.01826EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2023/02/24 12:0 a.m.24 views

D-Link DHP-1565 Devices RCE Vulnerability (Sep 2019)

D-Link DHP-1565 devices are prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS9.6AI score0.99996EPSS
Exploits5References6
OpenVAS
OpenVAS
added 2023/02/24 12:0 a.m.25 views

D-Link Multiple DIR Devices RCE Vulnerability (Sep 2019)

Multiple D-Link DIR devices are prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS9.6AI score0.99996EPSS
Exploits5References6
OpenVAS
OpenVAS
added 2023/02/24 12:0 a.m.12 views

D-Link Multiple DIR Devices RCE Vulnerability (Sep 2017)

Multiple D-Link DIR devices are prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS9.6AI score0.82863EPSS
Exploits8References5
OpenVAS
OpenVAS
added 2023/02/24 12:0 a.m.25 views

D-Link DAP-1533 Devices RCE Vulnerability (Sep 2019)

D-Link DAP-1533 devices are prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS9.6AI score0.99996EPSS
Exploits5References6
Packet Storm
Packet Storm
added 2023/02/23 12:0 a.m.316 views

Device Manager Express 7.8.20002.47752 SQL Injection / XSS / Code Execution / Traversal

Product Name: Device Manager Express Vendor Homepage: https://www.audiocodes.com Software Link: https://www.audiocodes.com/solutions-products/products/management-products-solutions/device-manager Version: = 7.8.20002.47752 Tested on: Windows 10 / Server 2019 Default credentials: admin/admin...

1.1AI score0.43187EPSS
Exploits9
OpenVAS
OpenVAS
added 2023/02/23 12:0 a.m.21 views

D-Link DIR-820L Devices RCE Vulnerability (Mar 2022)

D-Link DIR-820L devices are prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS9.7AI score0.81218EPSS
Exploits1References4
Rows per page
Query Builder